CVE-2019-17450

find_abstract_instance in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32, allows remote attackers to cause a denial of service (infinite recursion and application crash) via a crafted ELF file.

Published : 2019-10-10 17:15 Updated : 2019-10-15 19:07

4.3
CVSS Score More info
Score 4.3 / 10
4.3
Vendor Product Version URI
Gnu Binutils 2.32 cpe:/a:gnu:binutils:2.32
  1. Gnu (1) Search CVE
    1. Binutils (1) Search CVE
      1. 2.32

CWE

ID Name Description Links
CWE-674 Uncontrolled Recursion The product does not properly control the amount of recursion that takes place, which consumes excessive resources, such as allocated memory or the program stack. CVE

History of changes

Date Event
2019-10-15 19:07
2019-10-10 18:30

New CVE