binutils through version 2.30 has a vulnerability in the elf.c:bfd_section_from_shdr() functionof the Binary File Descriptor (BFD) library (aka libbfd). An attacker could exploit this with a crafted executable file to cause a crash. Upstream Bug: https://sourceware.org/bugzilla/show_bug.cgi?id=22809 Upstream Patch: https://sourceware.org/bugzilla/attachment.cgi?id=10814&action=diff
Created mingw-binutils tracking bugs for this issue: Affects: fedora-all [bug 1560831] Created binutils tracking bugs for this issue: Affects: fedora-all [bug 1560828] Created mingw-binutils tracking bugs for this issue: Affects: epel-all [bug 1560830]
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2018:3032 https://access.redhat.com/errata/RHSA-2018:3032