readelf in GNU Binutils 2.28 writes to illegal addresses while processing corrupt input files containing symbol-difference relocations, leading to a heap-based buffer overflow.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | binutils | < 2.28-3 | binutils_2.28-3_all.deb |
Debian | 11 | all | binutils | < 2.28-3 | binutils_2.28-3_all.deb |
Debian | 10 | all | binutils | < 2.28-3 | binutils_2.28-3_all.deb |
Debian | 999 | all | binutils | < 2.28-3 | binutils_2.28-3_all.deb |
Debian | 13 | all | binutils | < 2.28-3 | binutils_2.28-3_all.deb |