← voltar
CVE-2018-6543

CVE-2018-6543

EPSS 2.3%
In GNU Binutils 2.30, there's an integer overflow in the function load_specific_debug_section() in objdump.c, which results in `malloc()` with 0 size. A crafted ELF file allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00072.htmlhttp://lists.opensuse.org/opensuse-security-announce/2019-11/msg00008.htmlhttps://security.gentoo.org/glsa/201811-17https://sourceware.org/bugzilla/show_bug.cgi?id=22769http://www.securityfocus.com/bid/102985