First published: Mon May 01 2017(Updated: )
dwarf.c in GNU Binutils 2.28 is vulnerable to an invalid read of size 1 during dumping of debug information from a corrupt binary. This vulnerability causes programs that conduct an analysis of binary programs, such as objdump and readelf, to crash.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
GNU Binutils | =2.28 | |
debian/binutils | 2.35.2-2 2.40-2 2.43.50.20241215-1 2.43.50.20241221-1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2017-8398 is a vulnerability in GNU Binutils 2.28 that allows for an invalid read of size 1 during the dumping of debug information from a corrupt binary.
Programs that conduct an analysis of binary programs, such as objdump and readelf, are affected by CVE-2017-8398.
You can check if your version of GNU Binutils is vulnerable by referring to the affected software section and matching your version against the vulnerable versions mentioned.
The severity of CVE-2017-8398 is not explicitly mentioned.
To fix CVE-2017-8398, you should update your GNU Binutils package to the recommended version mentioned in the affected software section.