The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29.1, allows remote attackers to cause a denial of service (memory access violation) or possibly have unspecified other impact via a COFF binary in which a relocation refers to a location after the end of the to-be-relocated section.
Created binutils tracking bugs for this issue:
Affects: fedora-all [bug 1499311]
Created mingw-binutils tracking bugs for this issue:
Affects: epel-all [bug 1499310]