CVE-2017-12799

Name of the Vulnerable Software and Affected Versions GNU Binutils version 2.29

Description The issue concerns a buffer overflow in the elf read notes function, located in bfd/elf.c, which can be triggered by a crafted binary file. This can lead to a denial of service, causing the application to crash. Additionally, it may have other unspecified impacts, potentially allowing remote attackers to access or modify confidential data.

Recommendations For GNU Binutils version 2.29, consider disabling the elf read notes function as a temporary workaround until a patch is available. Restrict access to crafted binary files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.