CVE-2019-17450
Summary
| CVE | CVE-2019-17450 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2019-10-10 17:15:00 UTC |
| Updated | 2023-02-27 15:32:00 UTC |
| Description | find_abstract_instance in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32, allows remote attackers to cause a denial of service (infinite recursion and application crash) via a crafted ELF file. |
Risk And Classification
Problem Types: CWE-674
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| 25078 – stack overflow in function find_abstract_instance | MISC | sourceware.org | Exploit, Issue Tracking, Third Party Advisory |
| [security-announce] openSUSE-SU-2020:1804-1: moderate: Security update f | SUSE | lists.opensuse.org | |
| USN-4336-1: GNU binutils vulnerabilities | Ubuntu security notices | UBUNTU | usn.ubuntu.com | |
| October 2019 GNU Binutils Vulnerabilities in NetApp Products | NetApp Product Security | CONFIRM | security.netapp.com | |
| Binutils: Multiple vulnerabilities (GLSA 202007-39) — Gentoo security | GENTOO | security.gentoo.org | |
| [security-announce] openSUSE-SU-2020:1790-1: moderate: Security update f | SUSE | lists.opensuse.org | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 296077 Oracle Solaris 11.4 Support Repository Update (SRU) 18.4.0 Missing (CPUJAN2020)
- 377579 Alibaba Cloud Linux Security Update for binutils (ALINUX3-SA-2022:0120)
- 670170 EulerOS Security Update for binutils (EulerOS-SA-2021-1670)
- 670363 EulerOS Security Update for binutils (EulerOS-SA-2021-1767)
- 751313 SUSE Enterprise Linux Security Update for binutils (SUSE-SU-2021:3593-1)
- 900199 CBL-Mariner Linux Security Update for binutils 2.32
- 903663 Common Base Linux Mariner (CBL-Mariner) Security Update for binutils (1902)
- 940059 AlmaLinux Security Update for binutils (ALSA-2020:4465)