[Bug 1162666] New: binutils: out of bounds memory write

[bugzilla]

https://bugzilla.redhat.com/show_bug.cgi?id=1162666

            Bug ID: 1162666
           Summary: binutils: out of bounds memory write
           Product: Security Response
         Component: vulnerability
          Keywords: Security
          Severity: low
          Priority: low
          Assignee: security-response-t...@redhat.com
          Reporter: vkaig...@redhat.com
                CC: bgoll...@redhat.com, d...@danny.cz,
                    dhowe...@redhat.com, erik-fed...@vanpienbroek.nl,
                    fedora-mi...@lists.fedoraproject.org,
                    ja...@redhat.com, kalevlem...@gmail.com,
                    kande...@redhat.com, kti...@redhat.com,
                    l...@redhat.com, lkoc...@redhat.com, lkund...@v3.sk,
                    mfr...@redhat.com, mhlav...@redhat.com,
                    ni...@redhat.com, ohudl...@redhat.com,
                    pfran...@redhat.com, rjo...@redhat.com,
                    r...@robspanton.com, seceng-idm-qe-l...@redhat.com,
                    swhit...@redhat.com, thibault.no...@gmail.com,
                    tmlc...@redhat.com, trond.daniel...@gmail.com



It was reported [1] that objdump will try to overwrite part of memory when
processing a crafted "ar" archive file.
Upstream patch for this is at [2].

[1]: https://sourceware.org/bugzilla/show_bug.cgi?id=17533
[2]:
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=bb0d867169d7e9743d229804106a8fbcab7f3b3f

-- 
You are receiving this mail because:
You are on the CC list for the bug.
Unsubscribe from this bug 
https://bugzilla.redhat.com/token.cgi?t=MacgSycVBH&a=cc_unsubscribe
_______________________________________________
mingw mailing list
mingw@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/mingw