The vulnerability of the process_cu_tu_index function in the dwarf.c component of the GNU Binutils development environment allows a hacker to induce a service failure.

The vulnerability of the processcutuindex function in the dwarf.c component of the GNU Binutils development environment is related to reading data from buffer beyond its allowable limits. Exploiting this vulnerability allows an attacker to trigger a service failure using a specially created binar...

K62553631: Binutils vulnerabilities CVE-2018-7570, CVE-2018-9996, and CVE-2018-10372

Security Advisory Description CVE-2018-7570 The assignfilepositionsfornonloadsections function in elf.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service NULL pointer dereference and application crash vi...

CVE-2018-10372

processcutuindex in dwarf.c in GNU Binutils 2.30 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted binary file, as demonstrated by readelf...