A flaw was found in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.31. A memory leak via a crafted ELF file in the _bfd_generic_read_minisymbols function in syms.c. This could lead to a denial of service attack (memory consumption).
Created binutils tracking bugs for this issue:
Affects: fedora-all [bug 1661535]
Created mingw-binutils tracking bugs for this issue:
Affects: epel-all [bug 1661537]
Affects: fedora-all [bug 1661536]