ID |
CVE-2018-12697
|
Summary |
A NULL pointer dereference (aka SEGV on unknown address 0x000000000000) was discovered in work_stuff_copy_to_from in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.30. This can occur during execution of objdump. |
References |
|
Vulnerable Configurations |
|
CVSS |
Base: | 5.0 (as of 03-08-2019 - 13:15) |
Impact: | |
Exploitability: | |
|
CWE |
CWE-476 |
CAPEC |
|
Access |
Vector | Complexity | Authentication |
NETWORK |
LOW |
NONE |
|
Impact |
Confidentiality | Integrity | Availability |
NONE |
NONE |
PARTIAL |
|
cvss-vector
via4
|
AV:N/AC:L/Au:N/C:N/I:N/A:P
|
redhat
via4
|
advisories | bugzilla | id | 1699745 | title | Failed ld plt-main/pltgot test cases |
| oval | OR | comment | Red Hat Enterprise Linux must be installed | oval | oval:com.redhat.rhba:tst:20070304026 |
AND | comment | Red Hat Enterprise Linux 7 is installed | oval | oval:com.redhat.rhba:tst:20150364027 |
OR | AND | comment | binutils is earlier than 0:2.27-41.base.el7 | oval | oval:com.redhat.rhsa:tst:20192075001 |
comment | binutils is signed with Red Hat redhatrelease2 key | oval | oval:com.redhat.rhsa:tst:20152079002 |
|
AND | comment | binutils-devel is earlier than 0:2.27-41.base.el7 | oval | oval:com.redhat.rhsa:tst:20192075003 |
comment | binutils-devel is signed with Red Hat redhatrelease2 key | oval | oval:com.redhat.rhsa:tst:20152079004 |
|
|
|
|
| rhsa | id | RHSA-2019:2075 | released | 2019-08-06 | severity | Moderate | title | RHSA-2019:2075: binutils security and bug fix update (Moderate) |
|
| rpms | - binutils-0:2.27-41.base.el7
- binutils-debuginfo-0:2.27-41.base.el7
- binutils-devel-0:2.27-41.base.el7
|
|
refmap
via4
|
bid | 104538 | gentoo | GLSA-201908-01 | misc | | ubuntu | |
|
Last major update |
03-08-2019 - 13:15 |
Published |
23-06-2018 - 23:29 |
Last modified |
03-08-2019 - 13:15 |