coffgen.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29.1, does not validate the symbol count, which allows remote attackers to cause a denial of service (integer overflow and application crash, or excessive memory allocation) or possibly have unspecified other impact via a crafted PE file.
References
Configurations
History
07 Nov 2023, 02:40
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2017-11-15 08:29
Updated : 2024-02-28 16:04
NVD link : CVE-2017-16831
Mitre link : CVE-2017-16831
CVE.ORG link : CVE-2017-16831
JSON object : View
Products Affected
gnu
- binutils
CWE
CWE-190
Integer Overflow or Wraparound