CVE-2018-7208
Description
A missing index validation in the coff_pointerize_aux function of GNU Binutils 2.30's libbfd can cause a denial of service via a crafted COFF file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A missing index validation in the coff_pointerize_aux function of GNU Binutils 2.30's libbfd can cause a denial of service via a crafted COFF file.
Vulnerability
The vulnerability resides in the coff_pointerize_aux function within coffgen.c of the Binary File Descriptor (BFD) library, as distributed in GNU Binutils version 2.30. An index is not properly validated before being used, allowing a specially crafted COFF object file to trigger a segmentation fault when processed by tools such as objcopy [1][3].
Exploitation
An attacker can exploit this vulnerability by crafting a malicious COFF object file and enticing a user to process it with a vulnerable Binutils utility (e.g., objcopy). No authentication or special network position is required; the attack vector is local file processing. The attacker does not need any privileges beyond the ability to supply the file to the user [1][3].
Impact
Successful exploitation leads to a denial of service (segmentation fault) in the affected utility. The security advisory mentions the possibility of other unspecified impacts, but no code execution or information disclosure has been confirmed in available references [1][3].
Mitigation
Red Hat issued an advisory RHSA-2018:3032 to address this vulnerability in Red Hat Enterprise Linux packages [1]. Gentoo provides a GLSA (201811-17) recommending an upgrade to Binutils version 2.30-r2 or later [3]. The fix is included in later releases of GNU Binutils; users should update to a version where the index validation has been corrected. If updating is not possible, avoid processing untrusted COFF files with Binutils tools [3].
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
63- Range: =2.30
- osv-coords61 versionspkg:rpm/opensuse/binutils&distro=openSUSE%20Leap%2015.0pkg:rpm/opensuse/binutils&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/binutils&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/cross-aarch64-binutils&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/cross-arm-binutils&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/cross-avr-binutils&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/cross-epiphany-binutils&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/cross-hppa64-binutils&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/cross-hppa-binutils&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/cross-i386-binutils&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/cross-ia64-binutils&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/cross-m68k-binutils&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/cross-mips-binutils&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/cross-ppc64-binutils&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/cross-ppc64le-binutils&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/cross-ppc-binutils&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/cross-riscv64-binutils&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/cross-rx-binutils&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/cross-s390-binutils&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/cross-s390x-binutils&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/cross-sparc64-binutils&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/cross-sparc-binutils&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/cross-spu-binutils&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/gdb&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/gdb&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/gdb-testresults&distro=openSUSE%20Leap%2015.5pkg:rpm/suse/binutils&distro=SUSE%20Enterprise%20Storage%204pkg:rpm/suse/binutils&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP3pkg:rpm/suse/binutils&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015pkg:rpm/suse/binutils&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP1pkg:rpm/suse/binutils&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015pkg:rpm/suse/binutils&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP1pkg:rpm/suse/binutils&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015pkg:rpm/suse/binutils&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP1pkg:rpm/suse/binutils&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSSpkg:rpm/suse/binutils&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCLpkg:rpm/suse/binutils&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-LTSSpkg:rpm/suse/binutils&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3pkg:rpm/suse/binutils&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSSpkg:rpm/suse/binutils&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/binutils&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP2pkg:rpm/suse/binutils&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3pkg:rpm/suse/binutils&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3pkg:rpm/suse/binutils&distro=SUSE%20OpenStack%20Cloud%207pkg:rpm/suse/cross-ppc-binutils&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3pkg:rpm/suse/cross-spu-binutils&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3pkg:rpm/suse/gdb&distro=SUSE%20Enterprise%20Storage%207.1pkg:rpm/suse/gdb&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/gdb&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSSpkg:rpm/suse/gdb&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/gdb&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/gdb&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP5pkg:rpm/suse/gdb&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/gdb&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/gdb&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSSpkg:rpm/suse/gdb&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/gdb&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/gdb&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/gdb&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3pkg:rpm/suse/gdb&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/gdb&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5
< 2.32-lp150.10.1+ 60 more
- (no CPE)range: < 2.32-lp150.10.1
- (no CPE)range: < 2.32-lp151.3.3.1
- (no CPE)range: < 2.37-1.3
- (no CPE)range: < 2.32-lp151.3.3.1
- (no CPE)range: < 2.32-lp151.3.3.1
- (no CPE)range: < 2.32-lp151.3.3.1
- (no CPE)range: < 2.32-lp151.3.3.1
- (no CPE)range: < 2.32-lp151.3.3.1
- (no CPE)range: < 2.32-lp151.3.3.1
- (no CPE)range: < 2.32-lp151.3.3.1
- (no CPE)range: < 2.32-lp151.3.3.1
- (no CPE)range: < 2.32-lp151.3.3.1
- (no CPE)range: < 2.32-lp151.3.3.1
- (no CPE)range: < 2.32-lp151.3.3.1
- (no CPE)range: < 2.32-lp151.3.3.1
- (no CPE)range: < 2.32-lp151.3.3.1
- (no CPE)range: < 2.32-lp151.3.3.1
- (no CPE)range: < 2.32-lp151.3.3.1
- (no CPE)range: < 2.32-lp151.3.3.1
- (no CPE)range: < 2.32-lp151.3.3.1
- (no CPE)range: < 2.32-lp151.3.3.1
- (no CPE)range: < 2.32-lp151.3.3.1
- (no CPE)range: < 2.32-lp151.3.3.1
- (no CPE)range: < 13.2-150400.15.14.1
- (no CPE)range: < 12.1-6.1
- (no CPE)range: < 13.2-150400.15.14.4
- (no CPE)range: < 2.31-9.26.1
- (no CPE)range: < 2.31-9.26.1
- (no CPE)range: < 2.31-6.3.1
- (no CPE)range: < 2.32-7.5.1
- (no CPE)range: < 2.31-6.3.1
- (no CPE)range: < 2.32-7.5.1
- (no CPE)range: < 2.32-6.8.1
- (no CPE)range: < 2.32-7.5.1
- (no CPE)range: < 2.31-9.26.1
- (no CPE)range: < 2.31-9.26.1
- (no CPE)range: < 2.31-9.26.1
- (no CPE)range: < 2.31-9.26.1
- (no CPE)range: < 2.31-9.26.1
- (no CPE)range: < 2.31-9.26.1
- (no CPE)range: < 2.31-9.26.1
- (no CPE)range: < 2.31-9.26.1
- (no CPE)range: < 2.31-9.26.1
- (no CPE)range: < 2.31-9.26.1
- (no CPE)range: < 2.31-9.26.1
- (no CPE)range: < 2.31-9.26.1
- (no CPE)range: < 13.2-150100.8.39.1
- (no CPE)range: < 13.2-150100.8.39.1
- (no CPE)range: < 13.2-150100.8.39.1
- (no CPE)range: < 13.2-150400.15.14.1
- (no CPE)range: < 13.2-150400.15.14.1
- (no CPE)range: < 13.2-150400.15.14.1
- (no CPE)range: < 12.1-2.20.1
- (no CPE)range: < 13.2-150100.8.39.1
- (no CPE)range: < 13.2-150100.8.39.1
- (no CPE)range: < 13.2-150400.15.14.1
- (no CPE)range: < 12.1-2.20.1
- (no CPE)range: < 13.2-150100.8.39.1
- (no CPE)range: < 13.2-150100.8.39.1
- (no CPE)range: < 13.2-150400.15.14.1
- (no CPE)range: < 12.1-2.20.1
Patches
0No patches discovered yet.
Vulnerability mechanics
No source-code context for this CVE — mechanics is only generated when we can read the actual fix diff. Without that, the four sections (root cause, attack vector, affected code, fix) would be speculation rather than analysis.
References
7- lists.opensuse.org/opensuse-security-announce/2019-10/msg00072.htmlmitrevendor-advisoryx_refsource_SUSE
- lists.opensuse.org/opensuse-security-announce/2019-11/msg00008.htmlmitrevendor-advisoryx_refsource_SUSE
- access.redhat.com/errata/RHBA-2019:0327mitrevendor-advisoryx_refsource_REDHAT
- access.redhat.com/errata/RHSA-2018:3032mitrevendor-advisoryx_refsource_REDHAT
- security.gentoo.org/glsa/201811-17mitrevendor-advisoryx_refsource_GENTOO
- www.securityfocus.com/bid/103077mitrevdb-entryx_refsource_BID
- sourceware.org/bugzilla/show_bug.cgimitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.