Bug 1595419 (CVE-2018-12698)

Summary: CVE-2018-12698 binutils: excessive memory consumption in demangle_template in cplus-dem.c
Product: [Other] Security Response Reporter: Laura Pardo <lpardo>
Component: vulnerabilityAssignee: Red Hat Product Security <security-response-team>
Status: CLOSED WONTFIX QA Contact:
Severity: low Docs Contact:
Priority: low    
Version: unspecifiedCC: aoliva, dvlasenk, erik-fedora, fweimer, jakub, klember, ktietz, law, nickc, ohudlick, rjones, yselkowi
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2019-06-10 10:30:26 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1595423, 1595424, 1595425, 1595426, 1600233, 1600234    
Bug Blocks: 1595443    

Description Laura Pardo 2018-06-26 21:49:38 UTC 
A flaw was found in demangle_template in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.30. This vulnerability allows attackers to trigger excessive memory consumption (aka OOM) during the "Create an array for saving the template argument values" XNEWVEC call.


References:
https://bugs.launchpad.net/ubuntu/+source/binutils/+bug/1763102 	
https://gcc.gnu.org/bugzilla/show_bug.cgi?id=85454 	
https://sourceware.org/bugzilla/show_bug.cgi?id=23057
Comment 1 Laura Pardo 2018-06-26 21:53:53 UTC 
Created binutils tracking bugs for this issue:

Affects: fedora-all [bug 1595425]


Created mingw-binutils tracking bugs for this issue:

Affects: epel-all [bug 1595424]
Affects: fedora-all [bug 1595423]