Wind River Support Network

HomeDefectsLIN8-6711
Fixed

LIN8-6711 : Security Advisory - binutils - CVE-2017-8393

Created: May 14, 2017    Updated: Dec 3, 2018
Resolved Date: Oct 22, 2017
Found In Version: 8.0.0.17
Fix Version: 8.0.0.23
Severity: Standard
Applicable for: Wind River Linux 8
Component/s: Userspace

Description

The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to a global buffer over-read error because of an assumption made by code that runs for objcopy and strip, that SHT_REL/SHR_RELA sections are always named starting with a .rel/.rela prefix. This vulnerability causes programs that conduct an analysis of binary programs using the libbfd library, such as objcopy and strip, to crash.

https://nvd.nist.gov/vuln/detail/CVE-2017-8393

Other Downloads


CVEs


Live chat
Online