SB2018102321 - Multiple denial of service vulnerabilities in GNU Binutils

Description

This security bulletin contains information about 3 secuirty vulnerabilities.

1) Out-of-bounds read (CVE-ID: CVE-2018-18605)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary error within the sec_merge_hash_lookup() function in merge.c. A remote attacker can pass a specially crafted ELF file to the application and crash it.

2) NULL pointer dereference (CVE-ID: CVE-2018-18607)

The vulnerability allows a remote attacker to crash the application.

The vulnerability exists due to NULL pointer dereference within the elf_link_input_bfd() function in elflink.c. A remote attacker can trick the victim into processing a specially crafted file and crash the application.

3) NULL pointer dereference (CVE-ID: CVE-2018-18606)

The vulnerability allows a remote attacker to crash the application.

The vulnerability exists due to NULL pointer dereference within the merge_strings() function in merge.c. A remote attacker can trick the victim into processing a specially crafted file and crash the application.

Remediation

Install update from vendor's website.

References

• https://security.netapp.com/advisory/ntap-20190307-0003/
• https://sourceware.org/bugzilla/show_bug.cgi?id=23804
• https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=ab419ddbb2cdd17ca83618990f2cacf904ce1d61
• https://usn.ubuntu.com/4336-1/
• https://sourceware.org/bugzilla/show_bug.cgi?id=23805
• https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=102def4da826b3d9e169741421e5e67e8731909a
• https://sourceware.org/bugzilla/show_bug.cgi?id=23806
• https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=45a0eaf77022963d639d6d19871dbab7b79703fc