1
Candidate: CVE-2017-14529
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14529
5
https://sourceware.org/bugzilla/show_bug.cgi?id=22113
6
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=4d465c689a8fb27212ef358d0aee89d60dee69a6
7
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=dcaaca89e8618eba35193c27afcb1cfa54f74582
9
The pe_print_idata function in peXXigen.c in the Binary File Descriptor
10
(BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, mishandles
11
HintName vector entries, which allows remote attackers to cause a denial of
12
service (heap-based buffer over-read and application crash) via a crafted
13
PE file, related to the bfd_getl16 function.
22
upstream: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=4d465c689a8fb27212ef358d0aee89d60dee69a6
23
upstream: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=dcaaca89e8618eba35193c27afcb1cfa54f74582 (v2.29)
24
upstream_binutils: released (2.29.1)
25
precise/esm_binutils: needs-triage
26
trusty_binutils: needs-triage
27
vivid/ubuntu-core_binutils: DNE
28
xenial_binutils: needs-triage
29
zesty_binutils: ignored (reached end-of-life)
30
artful_binutils: not-affected (2.29.1-1ubuntu1)
31
bionic_binutils: not-affected (2.29.1-1ubuntu1)
32
devel_binutils: not-affected (2.29.1-1ubuntu1)