An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an attempted excessive memory allocation in elf_read_notes in elf.c. Reference: https://sourceware.org/bugzilla/show_bug.cgi?id=24238
Created binutils tracking bugs for this issue: Affects: fedora-all [bug 1680673]
Note - this is not a real CVE. A corrupt input file is causing one of the binutils tools to attempt to allocate more memory than is available on the host machine. Under normal circumstances this allocation will fail, the tool will detect the failure and correctly report an "out of memory" error. The CVE was filed against a version of the tool which had been compiled with address sanitization enabled, which meant that the over-large memory allocation was caught and flagged as an error before the tool could handle it.
Looks to be the same style of "issue" as https://bugzilla.redhat.com/show_bug.cgi?id=1680660 I.e., looks correct, seems like an invalid CVE. NOTABUG!