Red Hat Bugzilla – Bug 159891
CAN-2005-1704 Integer overflow in the Binary File Descriptor (BFD) library
Last modified: 2008-02-11 19:26:56 EST
+++ This bug was initially created as a clone of Bug #159888 +++
Integer overflow in the BFD library for elfutils allows attackers to
execute arbitrary code via a crafted object file that specifies a large number
of section headers, leading to a heap-based buffer overflow.
I believe this issue has not been fixed in FC4 yet.
Fedora Core 3 is now maintained by the Fedora Legacy project for security
updates only. If this problem is a security issue, please reopen and
reassign to the Fedora Legacy product. If it is not a security issue and
hasn't been resolved in the current FC5 updates or in the FC6 test
release, reopen and change the version to match.
Fedora Core 3 is not maintained anymore.
Setting status to "INSUFFICIENT_DATA". If you can reproduce this bug in the
current Fedora release, please reopen this bug and assign it to the
corresponding Fedora version.