The display_debug_ranges function in dwarf.c in GNU Binutils 2.30 allows attackers to cause a denial of service (integer overflow and application crash) or possibly have unspecified other impact via a crafted ELF file, as demonstrated by objdump.
Created binutils tracking bugs for this issue:
Affects: fedora-all [bug 1551786]
Created mingw-binutils tracking bugs for this issue:
Affects: epel-all [bug 1551787]
This issue has been addressed in the following products:
Red Hat Enterprise Linux 7
Via RHSA-2018:3032 https://access.redhat.com/errata/RHSA-2018:3032