VYPR
Medium severity5.5OSV Advisory· Published Apr 10, 2018· Updated Jun 17, 2026

CVE-2018-9996

CVE-2018-9996

Description

An issue was discovered in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.30. Stack Exhaustion occurs in the C++ demangling functions provided by libiberty, and there are recursive stack frames: demangle_template_value_parm, demangle_integral_value, and demangle_expression.

Affected products

3
  • GNU/BinutilsOSV2 versions
    binutils-2_30, gdb-4_18-branchpoint, gdb-7.10-branchpoint, …+ 1 more
    • (no CPE)range: binutils-2_30, gdb-4_18-branchpoint, gdb-7.10-branchpoint, …
    • (no CPE)range: =2.30
  • GNU/Libibertyllm-fuzzy
    Range: =2.30

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.