CVE-2014-8738
Published: 15 January 2015
The _bfd_slurp_extended_name_table function in bfd/archive.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service (invalid write, segmentation fault, and crash) via a crafted extended name table in an archive.
Priority
Status
Package | Release | Status |
---|---|---|
binutils Launchpad, Ubuntu, Debian |
lucid |
Released
(2.20.1-3ubuntu7.2)
|
precise |
Released
(2.22-6ubuntu1.2)
|
|
trusty |
Released
(2.24-5ubuntu3.1)
|
|
upstream |
Needs triage
|
|
utopic |
Released
(2.24.90.20141014-0ubuntu3.1)
|
|
Patches: upstream: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=bb0d867169d7e9743d229804106a8fbcab7f3b3f |