GNU Binutils allows attackers to cause a denial of service (memory consumption) via a crafted ELF file with many program headers, related to the get_program_headers function in readelf.c. Upstream patch: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=82156ab704b08b124d319c0decdbd48b3ca2dac5 References: https://blogs.gentoo.org/ago/2017/05/12/binutils-multiple-crashes/