Medium severity5.5NVD Advisory· Published Nov 30, 2017· Updated Jun 17, 2026
CVE-2017-17080
CVE-2017-17080
Description
elf.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29.1, does not validate sizes of core notes, which allows remote attackers to cause a denial of service (bfd_getl32 heap-based buffer over-read and application crash) via a crafted object file, related to elfcore_grok_netbsd_procinfo, elfcore_grok_openbsd_procinfo, and elfcore_grok_nto_status.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3Patches
Vulnerability mechanics
References
2- sourceware.org/bugzilla/show_bug.cginvdIssue TrackingThird Party Advisory
- security.gentoo.org/glsa/201811-17nvd
News mentions
0No linked articles in our index yet.