Integer overflow in the Binary File Descriptor (BFD) library for gdb before 6.3, binutils, elfutils, and possibly other packages, allows user-assisted attackers to execute arbitrary code via a crafted object file that specifies a large number of section headers, leading to a heap-based buffer overflow.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Gdb | Gnu | * | 6.3 (including) |
| Red Hat Desktop version 3 | RedHat | * | |
| Red Hat Enterprise Linux 3 | RedHat | binutils-0:2.14.90.0.4-39 | * |
| Red Hat Enterprise Linux 3 | RedHat | elfutils-0:0.94.1-2 | * |
| Red Hat Enterprise Linux 4 | RedHat | binutils-0:2.15.92.0.2-15 | * |
| Red Hat Enterprise Linux 4 | RedHat | gdb-0:6.3.0.0-1.63 | * |
| Red Hat Enterprise Linux 4 | RedHat | elfutils-0:0.97.1-3 | * |
| Red Hat Enterprise Linux AS (Advanced Server) version 2.1 | RedHat | * | |
| Red Hat Enterprise Linux AS (Advanced Server) version 2.1 | RedHat | * | |
| Red Hat Enterprise Linux AS version 3 | RedHat | * | |
| Red Hat Enterprise Linux ES version 2.1 | RedHat | * | |
| Red Hat Enterprise Linux ES version 2.1 | RedHat | * | |
| Red Hat Enterprise Linux ES version 3 | RedHat | * | |
| Red Hat Enterprise Linux WS version 2.1 | RedHat | * | |
| Red Hat Enterprise Linux WS version 2.1 | RedHat | * | |
| Red Hat Enterprise Linux WS version 3 | RedHat | * | |
| Red Hat Linux Advanced Workstation 2.1 | RedHat | * | |
| Red Hat Linux Advanced Workstation 2.1 | RedHat | * | |
| Gdb | Ubuntu | dapper | * |
| Gdb | Ubuntu | devel | * |
| Gdb | Ubuntu | edgy | * |
| Gdb | Ubuntu | feisty | * |
| Gdb-doc | Ubuntu | devel | * |
| Gdb-doc | Ubuntu | edgy | * |
| Gdb-doc | Ubuntu | feisty | * |