CVE-2018-10535NULL Pointer Dereference in Binutils

CWE-476NULL Pointer Dereference12 documents8 sources
Severity
5.5MEDIUMNVD
EPSS
0.1%
top 64.81%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
GNU BinutilsRedhat Enterprise Linux DesktopRedhat Enterprise Linux Server+1 more
Timeline
PublishedApr 29
Latest updateMay 14

Description

The ignore_section_sym function in elf.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.30, does not validate the output_section pointer in the case of a symtab entry with a "SECTION" type that has a "0" value, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file, as demonstrated by objcopy.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages5 packages

Debiangnu/binutils< 2.30.90.20180627-1+3
NVDgnu/binutils2.30

🔴Vulnerability Details

3
GHSA
GHSA-369x-mphv-h9f7: The ignore_section_sym function in elf2022-05-14
OSV
CVE-2018-10535: The ignore_section_sym function in elf2018-04-29
CVEList
CVE-2018-10535: The ignore_section_sym function in elf2018-04-29

📋Vendor Advisories

4
Ubuntu
GNU binutils vulnerabilities2021-07-21
Ubuntu
GNU binutils vulnerabilities2020-04-22
Red Hat
binutils: NULL pointer dereference in elf.c2018-04-24
Debian
CVE-2018-10535: binutils - The ignore_section_sym function in elf.c in the Binary File Descriptor (BFD) lib...2018

💬Community

4
Bugzilla
CVE-2018-10535 binutils: NULL pointer dereference in elf.c2018-05-03
Bugzilla
CVE-2018-10534 CVE-2018-10535 mingw-binutils: various flaws [epel-all]2018-05-03
Bugzilla
CVE-2018-10534 CVE-2018-10535 binutils: various flaws [fedora-all]2018-05-03
Bugzilla
CVE-2018-10534 CVE-2018-10535 mingw-binutils: various flaws [fedora-all]2018-05-03
CVE-2018-10535 — NULL Pointer Dereference in Binutils | cvebase