CVE-2018-19932
Description
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils through 2.31. There is an integer overflow and infinite loop caused by the IS_CONTAINED_BY_LMA macro in elf.c.
Risk Information
Base Score
5.5
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.42
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| SUSE-SU-2019:2650-1(SUSE Linux Enterprise Desktop 12-SP4 ) binutils-2.32-9.33.1.x86_64.rpm | Linux |
| SUSE-SU-2019:2650-1(SUSE Linux Enterprise Desktop 12-SP4 ) binutils-debuginfo-2.32-9.33.1.x86_64.rpm | Linux |
| SUSE-SU-2019:2650-1(SUSE Linux Enterprise Desktop 12-SP4 ) binutils-debugsource-2.32-9.33.1.x86_64.rpm | Linux |
| GNU assembler, linker and binary utilities (USN-4336-1) binutils_2.30-21ubuntu1~18.04.3_i386.deb | Linux |
| GNU assembler, linker and binary utilities (USN-4336-1) binutils_2.30-21ubuntu1~18.04.3_amd64.deb | Linux |
| GNU assembler, linker and binary utilities (USN-4336-1) binutils-multiarch_2.30-21ubuntu1~18.04.3_i386.deb | Linux |
| GNU assembler, linker and binary utilities (USN-4336-1) binutils-multiarch_2.30-21ubuntu1~18.04.3_amd64.deb | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234