VYPR
High severity7.8OSV Advisory· Published Jun 19, 2017· Updated Jun 17, 2026

CVE-2017-9744

CVE-2017-9744

Description

The sh_elf_set_mach_from_flags function in bfd/elf32-sh.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted binary file, as demonstrated by mishandling of this file during "objdump -D" execution.

Affected products

3
  • GNU/BinutilsOSV3 versions
    binutils-2_28, gdb-4_18-branchpoint, gdb-7.10-branchpoint, …+ 2 more
    • (no CPE)range: binutils-2_28, gdb-4_18-branchpoint, gdb-7.10-branchpoint, …
    • cpe:2.3:a:gnu:binutils:2.28:*:*:*:*:*:*:*
    • (no CPE)range: = 2.28

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.