CVE-2017-15023

MEDIUM

GNU Binutils - NULL Pointer Dereference

Title source: rule

Description

read_formatted_entries in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, does not properly validate the format count, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted ELF file, related to concat_filename.

References (5)

[Patch] https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git%3Bh=c361faae8d964db951b7100cada4dcdc983df1bf

[Patch, Third Party Advisory, VDB Entry] https://blogs.gentoo.org/ago/2017/10/03/binutils-null-pointer-dereference-in-concat_filename-dwarf2-c/

[Issue Tracking, Patch, Third Party Advisory] https://sourceware.org/bugzilla/show_bug.cgi?id=22200

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/101611

[Third Party Advisory] https://security.gentoo.org/glsa/201801-01

Scores

CVSS v3 5.5

EPSS 0.0049

EPSS Percentile 65.2%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Classification

CWE

CWE-476

Status draft

Affected Products (1)

gnu/binutils

Timeline

Published Oct 05, 2017

Tracked Since Feb 18, 2026