CVE-2017-16830

Name of the Vulnerable Software and Affected Versions: GNU Binutils version 2.29.1

Description: The issue is related to integer-overflow protection in the print gnu property note function. This allows remote attackers to cause a denial of service, potentially leading to a segmentation violation and application crash, or possibly having other unspecified impacts via a crafted ELF file. The vulnerability can also be exploited to access confidential data, compromise its integrity, and cause a denial of service.

Recommendations: For GNU Binutils version 2.29.1, consider updating to a newer version that addresses the integer-overflow issue in the print gnu property note function. As a temporary workaround, restrict the use of the print gnu property note function to minimize the risk of exploitation. Avoid processing crafted ELF files until the issue is resolved.