First published: Tue May 02 2017(Updated: )
Last updated 24 July 2024
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
GNU Binutils | =2.28 | |
debian/binutils | 2.35.2-2 2.40-2 2.43.50.20241215-1 2.43.50.20241221-1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2017-8421 is a vulnerability in the Binary File Descriptor (BFD) library in GNU Binutils 2.28, which can cause memory exhaustion in objdump via a crafted PE file.
CVE-2017-8421 affects Binutils version 2.28.
To fix CVE-2017-8421, you should update Binutils to version 2.31.1-16, 2.35.2-2, 2.40-2, or 2.41-5.
Yes, Binutils version 2.31.1-16, 2.35.2-2, 2.40-2, and 2.41-5 include patches for CVE-2017-8421.
More information about CVE-2017-8421 can be found at the following references: [https://sourceware.org/bugzilla/show_bug.cgi?id=21440](https://sourceware.org/bugzilla/show_bug.cgi?id=21440), [https://security.gentoo.org/glsa/201709-02](https://security.gentoo.org/glsa/201709-02), [https://launchpad.net/bugs/cve/CVE-2017-8421](https://launchpad.net/bugs/cve/CVE-2017-8421).