CVE-2017-9754

Name of the Vulnerable Software and Affected Versions GNU Binutils version 2.28

Description The issue is related to the process otr function in the BFD library, which fails to validate a certain offset. This can be exploited by remote attackers using a crafted binary file, potentially leading to a denial of service through a buffer overflow and application crash, or possibly other unspecified impacts. An example of how this issue can be triggered is through the execution of "objdump -D" on a maliciously crafted binary file.

Recommendations For GNU Binutils version 2.28, consider updating to a newer version that addresses this issue, as the current version does not validate certain offsets, leading to potential security risks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.