CVE-2014-8485

Fedora < 2.24 - Code Injection

Title source: rule

Description

The setup_group function in bfd/elf.c in libbfd in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted section group headers in an ELF file.

References (15)

Scores

EPSS 0.0418
EPSS Percentile 88.5%

Classification

CWE
CWE-94
Status draft

Affected Products (8)

fedoraproject/fedora
fedoraproject/fedora
fedoraproject/fedora
canonical/ubuntu_linux
canonical/ubuntu_linux
canonical/ubuntu_linux
canonical/ubuntu_linux
gnu/binutils < 2.24

Timeline

Published Dec 09, 2014
Tracked Since Feb 18, 2026