CVE-2017-9040

GNU Binutils 2017-04-03 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash), related to the process_mips_specific function in readelf.c, via a crafted ELF file that triggers a large memory-allocation attempt.
Configurations

Configuration 1 (hide)

cpe:2.3:a:gnu:binutils:2.28:*:*:*:*:*:*:*

History

07 Nov 2023, 02:50

Type Values Removed Values Added
References
  • {'url': 'https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=7296a62a2a237f6b1ad8db8c38b090e9f592c8cf', 'name': 'https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=7296a62a2a237f6b1ad8db8c38b090e9f592c8cf', 'tags': ['Issue Tracking', 'Patch', 'Third Party Advisory'], 'refsource': 'MISC'}
  • () https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git%3Bh=7296a62a2a237f6b1ad8db8c38b090e9f592c8cf -

Information

Published : 2017-05-18 01:29

Updated : 2023-12-10 12:01


NVD link : CVE-2017-9040

Mitre link : CVE-2017-9040

CVE.ORG link : CVE-2017-9040


JSON object : View

Products Affected

gnu

  • binutils
CWE
CWE-476

NULL Pointer Dereference