CVE-2017-9750

Name of the Vulnerable Software and Affected Versions GNU Binutils version 2.28

Description The issue is related to a lack of bounds checks for certain scale arrays in the opcodes/rx-decode.opc file. This can be exploited by remote attackers using a crafted binary file, potentially leading to a denial of service through a buffer overflow and application crash. The issue can be triggered during the execution of "objdump -D" with a maliciously crafted file.

Recommendations For GNU Binutils version 2.28, consider updating to a newer version that includes the necessary bounds checks to prevent the buffer overflow. As a temporary workaround, restrict the use of "objdump -D" with untrusted binary files to minimize the risk of exploitation.