CVE-2005-1704
Published: 24 May 2005
Integer overflow in the Binary File Descriptor (BFD) library for gdb before 6.3, binutils, elfutils, and possibly other packages, allows user-assisted attackers to execute arbitrary code via a crafted object file that specifies a large number of section headers, leading to a heap-based buffer overflow.
Priority
Status
Package | Release | Status |
---|---|---|
binutils Launchpad, Ubuntu, Debian |
dapper |
Not vulnerable
|
edgy |
Not vulnerable
|
|
feisty |
Not vulnerable
|
|
upstream |
Needs triage
|
|
gdb Launchpad, Ubuntu, Debian |
dapper |
Released
(6.4-1ubuntu5.1)
|
edgy |
Released
(6.4.90.dfsg-1ubuntu3)
|
|
feisty |
Released
(6.4.90.dfsg-1ubuntu3)
|
|
upstream |
Needs triage
|
|
gdb-doc Launchpad, Ubuntu, Debian |
dapper |
Does not exist
|
edgy |
Released
(6.4.90-1)
|
|
feisty |
Released
(6.4.90-1)
|
|
upstream |
Needs triage
|