Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5.5
CVSSv3

CVE-2017-8421

Published: 02/05/2017 Updated: 03/10/2019
CVSS v2 Base Score: 7.1 | Impact Score: 6.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8
VMScore: 634
Vector: AV:N/AC:M/Au:N/C:N/I:N/A:C

Vulnerability Summary

The function coff_set_alignment_hook in coffcode.h in Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, has a memory leak vulnerability which can cause memory exhaustion in objdump via a crafted PE file. Additional validation in dump_relocs_in_section in objdump.c can resolve this.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

gnu binutils 2.28

Vendor Advisories

Red Hat: CVE-2017-8421
The function coff_set_alignment_hook in coffcodeh in Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 228, has a memory leak vulnerability which can cause memory exhaustion in objdump via a crafted PE file Additional validation in dump_relocs_in_section in objdumpc can resolve this ...

References

CWE-772https://sourceware.org/bugzilla/show_bug.cgi?id=21440https://security.gentoo.org/glsa/201709-02https://nvd.nist.govhttps://access.redhat.com/security/cve/cve-2017-8421
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
firewallCVE-2024-35649stored XSSCVE-2022-28654CVE-2020-35153CVE-2024-27348CVE-2022-28652local usersCVE-2017-3506
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook