Potential heap based buffer overflow found in _bfd_elf_slurp_version_tables() in bfd/elf.c. References: https://sourceware.org/git/?p=binutils-gdb.git;a=blobdiff;f=bfd/elf.c;h=185028cbd97ae0901c4276c8a4787b12bb75875a;hp=027d01437352555bc4ac0717cb0486c751a7775d;hb=c22d38baefc5a7a1e1f5cdc9dbb556b1f0ec5c57;hpb=f2f9bde5cde7ff34ed0a4c4682a211d402aa1086 https://sourceware.org/bugzilla/show_bug.cgi?id=30285
Notes for people reviewing this CVE: 1. It only affects programs that use the BFD library to load ELF symbol version information. 2. It requires corrupt input in order to trigger the bug. 3. If triggered the most that it can do is cause the program to terminate with a segmentation fault. It will not cause the generation of corrupt output.
Created binutils tracking bugs for this issue: Affects: fedora-36 [bug 2186584] Affects: fedora-37 [bug 2186586] Affects: fedora-all [bug 2186579] Created insight tracking bugs for this issue: Affects: fedora-36 [bug 2186582] Affects: fedora-37 [bug 2186587] Created mingw-binutils tracking bugs for this issue: Affects: fedora-36 [bug 2186583] Affects: fedora-37 [bug 2186588] Created radare2 tracking bugs for this issue: Affects: epel-7 [bug 2186591] Affects: epel-8 [bug 2186590] Affects: fedora-36 [bug 2186580] Affects: fedora-37 [bug 2186589] Created rizin tracking bugs for this issue: Affects: epel-8 [bug 2186585] Affects: fedora-36 [bug 2186581]