GNU Binutils is prone to multiple denial-of-service vulnerabilities.
An attacker can exploit these issues to cause a denial-of-service condition.
GNU Binutils 2.29 is vulnerable; other versions may also be affected.
Information
Exploit
The researcher who discovered this issue has created a proof-of-concept. Please see the references for more information.
References:
- binutils Homepage (binutils)
- Bug 22361 - Memory Allocation Error stemming from a Conditional jump dependant o (sourceware.org)
- PR22361 readelf buffer overflow on fuzzed archive header (sourceware.org)