CVE-2018-12698

Updated: 2022-05-25 08:14:02.191253

Description:

demangle_template in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.30, allows attackers to trigger excessive memory consumption (aka OOM) during the "Create an array for saving the template argument values" XNEWVEC call. This can occur during execution of objdump.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x MEDIUM 5
CVSS Version 3.x HIGH 7.5

Status

OS name Project name Version Score Severity Status Errata Last updated
CentOS 6 ELS binutils 2.20 7.5 HIGH Released CLSA-2022:1641904053 2022-05-05 12:04:08
CloudLinux 6 ELS binutils 2.20 7.5 HIGH Released CLSA-2021:1640790752 2022-01-11 09:49:10
Oracle Linux 6 ELS binutils 2.20 7.5 HIGH Released CLSA-2021:1640790635 2021-12-29 11:07:46
Ubuntu 16.04 ELS binutils 2.26 7.5 HIGH Released CLSA-2021:1635459139 2021-12-16 10:40:04