Home CVE Database CVE-2017-14934

CVE-2017-14934

Description

process_debug_info in dwarf.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (infinite loop) via a crafted ELF file that contains a negative size value in a CU structure.

Priority: Medium
CVSS v3: 5.5
Publish Date: Sep 29, 2017
Related ID: --
CVSS v2: Medium
Modified Date: Oct 10, 2017

Find out more about CVE-2017-14934 from the MITRE-CVE dictionary and NIST NVD


Products Affected

Login may be required to access defects or downloads.

Product Name Status Defect Fixed Downloads
Linux
Wind River Linux LTS 17 Fixed -- 10.17.41.7 --
Wind River Linux 8 Fixed LIN8-7965
8.0.0.25 --
Wind River Linux 9 Fixed LIN9-5540
9.0.0.12 --
Wind River Linux 7 Fixed -- 7.0.0.30 --
Wind River Linux LTS 18 Not Vulnerable -- -- --
Wind River Linux LTS 19 Not Vulnerable -- -- --
Wind River Linux CD release Not Vulnerable -- -- --
VxWorks
VxWorks 7 Not Vulnerable -- -- --
VxWorks 6.9 Not Vulnerable -- -- --

Related Products

Product Name Status Defect Fixed Downloads

Comments

binutils

Live chat
Online