CVE-2018-7570

Severity CVSS v4.0:
Pending analysis
Type:
CWE-476 NULL Pointer Dereference
Publication date:
28/02/2018
Last modified:
07/11/2023

Description

The assign_file_positions_for_non_load_sections function in elf.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an ELF file with a RELRO segment that lacks a matching LOAD segment, as demonstrated by objcopy.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:gnu:binutils:2.30:*:*:*:*:*:*:*