Note:
This project will be discontinued after December 13, 2021. [more]
2019-01-02
The demangle_template function in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.31.1, has a memory leak via a crafted string, leading to a denial of service (memory consumption), as demonstrated by cxxfilt, a related issue to CVE-2018-12698.
Products | Traffix_signaling_delivery_controller, Binutils |
Type | Missing Release of Resource after Effective Lifetime (CWE-772) |
First patch | - None (likely due to unavailable code) |
Links |
• https://support.f5.com/csp/article/K62602089
• https://access.redhat.com/errata/RHSA-2019:3352 • http://www.securityfocus.com/bid/106444 • https://gcc.gnu.org/bugzilla/show_bug.cgi?id=88539 |