CVE-2018-12641
Summary
| CVE | CVE-2018-12641 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2018-06-22 12:29:00 UTC |
| Updated | 2019-10-03 00:03:00 UTC |
| Description | An issue was discovered in arm_pt in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.30. Stack Exhaustion occurs in the C++ demangling functions provided by libiberty, and there are recursive stack frames: demangle_arm_hp_template, demangle_class_name, demangle_fund_type, do_type, do_arg, demangle_args, and demangle_nested_args. This can occur during execution of nm-new. |
Risk And Classification
Problem Types: CWE-400
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Red Hat Customer Portal | REDHAT | access.redhat.com | |
| 23058 – Stack-Overflow in nm-new (binuitils-2.30-15ubuntu1) | MISC | sourceware.org | Exploit, Issue Tracking, Third Party Advisory |
| USN-4326-1: libiberty vulnerabilities | Ubuntu security notices | UBUNTU | usn.ubuntu.com | |
| Binutils: Multiple vulnerabilities (GLSA 201908-01) — Gentoo security | GENTOO | security.gentoo.org | |
| USN-4336-1: GNU binutils vulnerabilities | Ubuntu security notices | UBUNTU | usn.ubuntu.com | |
| Bug #1763099 “Stack-Overflow in nm-new (binuitils-2.30-15ubuntu1...” : Bugs : binutils package : Ubuntu | MISC | bugs.launchpad.net | Third Party Advisory |
| 85452 – Stack-Overflow in nm-new / C++ name demangler (binuitils-2.30-15ubuntu1) | MISC | gcc.gnu.org | Issue Tracking, Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.