CVE-2018-19932
Name
CVE-2018-19932
Description
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils through 2.31. There is an integer overflow and infinite loop caused by the IS_CONTAINED_BY_LMA macro in elf.c.
NVD Severity
medium
Other trackers
CVE
,
NVD
,
CERT
,
CVE Details
,
CIRCL
,
Arch Linux
,
Debian
,
Red Hat
,
Ubuntu
,
Gentoo
,
SUSE (Bugzilla)
,
SUSE (CVE)
,
Mageia
Mailing lists
oss-security
,
full-disclosure
,
bugtraq
Exploits
Exploit DB
,
Metasploit
Forges
GitHub (
code
,
issues
), Aports (
code
,
issues
)
References
Type
URI
Patch
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=beab453223769279cc1cef68a1622ab8978641f7
Exploit
https://sourceware.org/bugzilla/show_bug.cgi?id=23932
Third Party Advisory
http://www.securityfocus.com/bid/106144
Patch
https://security.netapp.com/advisory/ntap-20190221-0004/
GENTOO
https://security.gentoo.org/glsa/201908-01
SUSE
http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00072.html
SUSE
http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00008.html
UBUNTU
https://usn.ubuntu.com/4336-1/
Match rules
CPE URI
Source package
Min version
Max version
cpe:2.3:a:gnu:binutils:*:*:*:*:*:*:*:*
binutils
>= None
<= 2.31
Vulnerable and fixed packages
Source package
Branch
Version
Maintainer
Status