← Back to CVEs
CVE-2017-8396
N/ADescription
The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of size 1 because the existing reloc offset range tests didn't catch small negative offsets less than the size of the reloc field. This vulnerability causes programs that conduct an analysis of binary programs using the libbfd library, such as objdump, to crash.
CVE Details
CVSS v3.1 ScoreN/A
Published5/1/2017
Last Modified4/20/2025
Sourcenvd
Honeypot Sightings0
Affected Products
gnu:binutils
Weaknesses (CWE)
CWE-20
References
https://security.gentoo.org/glsa/201709-02(cve@mitre.org)
https://sourceware.org/bugzilla/show_bug.cgi?id=21432(cve@mitre.org)
https://security.gentoo.org/glsa/201709-02(af854a3a-2127-422b-91ae-364da2661108)
https://sourceware.org/bugzilla/show_bug.cgi?id=21432(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.