Integer Overflow and Infinite Loop Vulnerability in GNU Binutils' BFD Library

Integer Overflow and Infinite Loop Vulnerability in GNU Binutils' BFD Library

CVE-2018-19932 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils through 2.31. There is an integer overflow and infinite loop caused by the IS_CONTAINED_BY_LMA macro in elf.c.

Learn more about our Web Application Penetration Testing UK.