CVE-2018-12698 : demangle_template in cplus-dem.c in GNU libiberty, as distributed in GNU Binutil

demangle_template in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.30, allows attackers to trigger excessive memory consumption (aka OOM) during the "Create an array for saving the template argument values" XNEWVEC call. This can occur during execution of objdump.

Published 2018-06-23 23:29:00

Updated 2019-10-03 00:03:26

Source MITRE

View at NVD, CVE.org

Products affected by CVE-2018-12698

GNU » Binutils » Version: 2.30
cpe:2.3:a:gnu:binutils:2.30:*:*:*:*:*:*:*
Matching versions
Canonical » Ubuntu Linux » Version: 16.04.4
cpe:2.3:o:canonical:ubuntu_linux:16.04.4:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2018-12698

EPSS FAQ

2.13%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 83 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2018-12698

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.0	MEDIUM	AV:N/AC:L/Au:N/C:N/I:N/A:P	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial
7.5	HIGH	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H	3.9	3.6	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High

References for CVE-2018-12698

https://sourceware.org/bugzilla/show_bug.cgi?id=23057

23057 – Multiple memory corruptions in objdump (binuitils-2.30-15ubuntu1)
Exploit;Issue Tracking;Third Party Advisory

CVEs referencing this url
https://security.gentoo.org/glsa/201908-01

Binutils: Multiple vulnerabilities (GLSA 201908-01) — Gentoo security

CVEs referencing this url
https://usn.ubuntu.com/4336-1/

USN-4336-1: GNU binutils vulnerabilities | Ubuntu security notices

CVEs referencing this url
https://bugs.launchpad.net/ubuntu/+source/binutils/+bug/1763102

Bug #1763102 “Multiple memory corruptions in objdump (binuitils-...” : Bugs : binutils package : Ubuntu
Exploit;Third Party Advisory

CVEs referencing this url
https://gcc.gnu.org/bugzilla/show_bug.cgi?id=85454

85454 – Multiple memory corruptions in objdump / C++ name demangler (binuitils-2.30-15ubuntu1)
Exploit;Issue Tracking;Vendor Advisory

CVEs referencing this url
https://usn.ubuntu.com/4326-1/

USN-4326-1: libiberty vulnerabilities | Ubuntu security notices

CVEs referencing this url
http://www.securityfocus.com/bid/104539

GNU libiberty CVE-2018-12698 Memory Corruption Vulnerability
Third Party Advisory;VDB Entry

Jump to

Vulnerability Details : CVE-2018-12698

Products affected by CVE-2018-12698

Exploit prediction scoring system (EPSS) score for CVE-2018-12698

CVSS scores for CVE-2018-12698

References for CVE-2018-12698