Not to be fixed
Created: Sep 16, 2012
Updated: Mar 5, 2016
Resolved Date: Jul 6, 2014
Previous ID: LIN3-8721
Found In Version: 6.0
Severity: Standard
Applicable for: Wind River Linux 6
Multiple integer overflows in the (1) _objalloc_alloc function in objalloc.c and (2) objalloc_alloc macro in include/objalloc.h in GNU libiberty, as used by binutils 2.22, allow remote attackers to cause a denial of service (crash) via vectors related to the addition of CHUNK_HEADER_SIZE to the length, which triggers a heap-based buffer overflow.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-3509
Unknown
Unknown
