First published: Wed Sep 05 2012(Updated: )
Last updated 24 July 2024
Credit: secalert@redhat.com secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
GNU Binutils | =2.22 | |
GNU libiberty | ||
Canonical Ubuntu Linux | =10.04 | |
Canonical Ubuntu Linux | =12.04 | |
Canonical Ubuntu Linux | =14.04 | |
Canonical Ubuntu Linux | =14.10 | |
Debian Debian Linux | =7.0 | |
debian/binutils | 2.35.2-2 2.40-2 2.43.50.20241215-1 2.43.50.20241221-1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2012-3509 is a vulnerability in GNU libiberty that allows remote attackers to cause a denial of service (crash) by exploiting multiple integer overflows.
CVE-2012-3509 affects binutils 2.22, causing a denial of service (crash) when certain vectors related to the addition of CHUNK_HEADER_SIZE to the len parameter are exploited.
Binutils 2.22 is affected by CVE-2012-3509.
To fix CVE-2012-3509, update binutils to version 2.22-6ubuntu1.2 or later.
Yes, you can find additional information about CVE-2012-3509 at the following references: http://gcc.gnu.org/bugzilla/show_bug.cgi?id=54411, http://security-tracker.debian.org/tracker/CVE-2012-3509, http://www.securityfocus.com/bid/55281.