CVE-2018-20673

The demangle_template function in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.31.1, contains an integer overflow vulnerability (for "Create an array for saving the template argument values") that can trigger a heap-based buffer overflow, as demonstrated by nm.
References
Link Resource
https://sourceware.org/bugzilla/show_bug.cgi?id=24039 Exploit Issue Tracking
http://www.securityfocus.com/bid/106454 Third Party Advisory VDB Entry
Configurations

Configuration 1

cpe:2.3:a:gnu:binutils:2.31.1:*:*:*:*:*:*:*

Information

Published : 2019-01-04 06:29

Updated : 2020-08-24 05:37


NVD link : CVE-2018-20673

Mitre link : CVE-2018-20673

Products Affected
No products.