CVE-2017-7301

2017-04-10T14:48:28
ID RH:CVE-2017-7301
Type redhatcve
Reporter redhat.com
Modified 2020-04-08T20:32:35

Description

The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, has an aout_link_add_symbols function in bfd/aoutx.h that has an off-by-one vulnerability because it does not carefully check the string offset. The vulnerability could lead to a GNU linker (ld) program crash.