A security issue was found in the BFD library of binutils before version 2.36. read_section() in dwarf2.c of BFD could cause excessive memory consumption when handling corrupt DWARF debug sections. This could lead to an impact to system availability, denial of service, and/or a crash in applications linked with the BFD library's DWARF functionality if they parse files from untrusted sources.
A security issue was found in the BFD library of binutils before version 2.36. read_section() in dwarf2.c of BFD could cause excessive memory consumption when handling corrupt DWARF debug sections. This could lead to an impact to system availability, denial of service, and/or a crash in applications linked with the BFD library's DWARF functionality if they parse files from untrusted sources.
https://bugzilla.redhat.com/show_bug.cgi?id=1947111 https://sourceware.org/bugzilla/show_bug.cgi?id=26946 https://sourceware.org/git/?p=binutils-gdb.git;a=commitdiff;h=647cebce12a6b0a26960220caff96ff38978cf24