CVE-2018-19932
MEDIUM5.5EPSS 0.29%發布日:2018/12/7修改日:2025/12/3
也稱為:ALPINE-CVE-2018-19932DEBIAN-CVE-2018-19932
描述
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils through 2.31. There is an integer overflow and infinite loop caused by the IS_CONTAINED_BY_LMA macro in elf.c.
受影響套件(2)
- Alpine/binutilsfrom 0, < 2.32-r0
- Debian/binutilsfrom 0, < 2.32.51.20190707-1
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM5.5 | CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H |