mirror of
https://github.com/0xMarcio/cve.git
synced 2026-04-21 14:06:08 +02:00
0xMarcio
900 B
900 B
CVE-2017-14938
Description
_bfd_elf_slurp_version_tables in elf.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (excessive memory allocation and application crash) via a crafted ELF file.
POC
Reference
- http://www.securityfocus.com/bid/101212
- https://blogs.gentoo.org/ago/2017/09/26/binutils-memory-allocation-failure-in-_bfd_elf_slurp_version_tables-elf-c/