GNU Binutils is prone to a denial-of-service vulnerability.
Attackers can exploit this issue to cause denial-of-service condition, denying service to legitimate users.
GNU Binutils 2.31 is vulnerable; other versions may also be affected.
Information
Exploit
The researcher who discovered this issue has created a proof-of-concept. Please see the references for more information.
References:
- Binutils Home Page (GNU)
- PR23952, memory leak in _bfd_generic_read_minisymbols (sourceware.org)
- Bug 23952 - A memory leak issue was discovered in bfd (sourceware.org)