CVE-2018-18309

2018-10-15T02:29:00
ID CVE-2018-18309
Type cve
Reporter cve@mitre.org
Modified 2019-10-31T01:15:00

Description

An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.31. An invalid memory address dereference was discovered in read_reloc in reloc.c. The vulnerability causes a segmentation fault and application crash, which leads to denial of service, as demonstrated by objdump, because of missing _bfd_clear_contents bounds checking.