CVE-2014-8738

EPSS 7.9%

Published: 1/15/2015Modified: 4/28/2026

Description

The _bfd_slurp_extended_name_table function in bfd/archive.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service (invalid write, segmentation fault, and crash) via a crafted extended name table in an archive.

Affected packages (2)

Debian/binutilsfrom 0, < 2.24.90.20141124-1
Debian/binutils-mingw-w64from 0, < 5.2

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-8738