SecuritySpace - CVE-2017-7300

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2017-7300

Description: The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, has an aout_link_add_symbols function in bfd/aoutx.h that is vulnerable to a heap-based buffer over-read (off- by-one) because of an incomplete check for invalid string offsets while loading symbols, leading to a GNU linker (ld) program crash.

Test IDs: 1.3.6.1.4.1.25623.1.1.4.2017.3170.1

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2017-7300
BugTraq ID: 97219
http://www.securityfocus.com/bid/97219

CVE ID:	CVE-2017-7300
Description:	The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, has an aout_link_add_symbols function in bfd/aoutx.h that is vulnerable to a heap-based buffer over-read (off- by-one) because of an incomplete check for invalid string offsets while loading symbols, leading to a GNU linker (ld) program crash.
Test IDs:	1.3.6.1.4.1.25623.1.1.4.2017.3170.1
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2017-7300 BugTraq ID: 97219 http://www.securityfocus.com/bid/97219