Vulnerability Details : CVE-2018-18309
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.31. An invalid memory address dereference was discovered in read_reloc in reloc.c. The vulnerability causes a segmentation fault and application crash, which leads to denial of service, as demonstrated by objdump, because of missing _bfd_clear_contents bounds checking.
Vulnerability category: OverflowMemory CorruptionDenial of service
Products affected by CVE-2018-18309
- cpe:2.3:a:gnu:binutils:2.31:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2018-18309
0.14%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 49 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2018-18309
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
4.3
|
MEDIUM | AV:N/AC:M/Au:N/C:N/I:N/A:P |
8.6
|
2.9
|
NIST | |
5.5
|
MEDIUM | CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H |
1.8
|
3.6
|
NIST |
CWE ids for CVE-2018-18309
-
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.Assigned by: nvd@nist.gov (Primary)
References for CVE-2018-18309
-
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=0930cb3021b8078b34cf216e79eb8608d017864f
sourceware.org Git - binutils-gdb.git/commitPatch;Third Party Advisory
-
http://www.securityfocus.com/bid/105692
GNU Binutils 'reloc.c' Denial of Service VulnerabilityThird Party Advisory;VDB Entry
-
http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00072.html
[security-announce] openSUSE-SU-2019:2415-1: moderate: Security update f
-
https://usn.ubuntu.com/4336-1/
USN-4336-1: GNU binutils vulnerabilities | Ubuntu security notices
-
http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00008.html
[security-announce] openSUSE-SU-2019:2432-1: moderate: Security update f
-
https://sourceware.org/bugzilla/show_bug.cgi?id=23770
23770 – An Invalid memory address dereference was discovered in function read_reloc in raloc.c in program objdump.Exploit;Issue Tracking;Patch;Third Party Advisory
Jump to