Lucene search

K
f5F5F5:K43871899
HistoryAug 05, 2022 - 12:00 a.m.

K43871899 : binutils vulnerability CVE-2018-1000876

2022-08-0500:00:00
my.f5.com
16
binutils objdump bfd_get_dynamic_reloc_upper_bound bfd_canonicalize_dynamic_reloc integer overflow heap overflow local execution arbitrary code vulnerability fixed commit 3a551c7a1b80fca579461774860574eabfd7f18f software

AI Score

7.9

Confidence

High

EPSS

0.001

Percentile

44.9%

Security Advisory Description

binutils version 2.32 and earlier contains a Integer Overflow vulnerability in objdump, bfd_get_dynamic_reloc_upper_bound,bfd_canonicalize_dynamic_reloc that can result in Integer overflow trigger heap overflow. Successful exploitation allows execution of arbitrary code… This attack appear to be exploitable via Local. This vulnerability appears to have been fixed in after commit 3a551c7a1b80fca579461774860574eabfd7f18f. (CVE-2018-1000876)

Impact

There is no impact; F5 products are not affected by this vulnerability.