Comment 1Guilherme de Almeida Suckevicz
2019-11-12 18:48:41 UTC
Created binutils tracking bugs for this issue:
Affects: fedora-all [bug 1771669]
Created mingw-binutils tracking bugs for this issue:
Affects: epel-6 [bug 1771673]
Affects: epel-7 [bug 1771672]
Affects: fedora-all [bug 1771670]
There's an issue on libbfd from binutils package while processing BFD data. When reading BFD sections from an ELF binary to extract debug information, _bfd_dwarf2_slurp_debug_info() doesn't properly validate section's size leading to a integer overflow. An attacker can leverage that by crafting a ELF file which may trigger the bug further causing heap data corruption and DoS.