vulnerability

Amazon Linux AMI 2: CVE-2018-7569: Security patch for binutils (Multiple Advisories)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:M/Au:N/C:N/I:N/A:P)	Feb 28, 2018	Apr 27, 2020	Apr 10, 2025

Severity

CVSS

(AV:N/AC:M/Au:N/C:N/I:N/A:P)

Published

Feb 28, 2018

Added

Apr 27, 2020

Modified

Apr 10, 2025

Description

dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service (integer underflow or overflow, and application crash) via an ELF file with a corrupt DWARF FORM block, as demonstrated by nm.

Solutions

amazon-linux-ami-2-upgrade-binutilsamazon-linux-ami-2-upgrade-binutils-debuginfoamazon-linux-ami-2-upgrade-binutils-devel

References

AMAZON-AL2/ALAS-2019-1138
AMAZON-AL2/ALAS-2019-1185
CVE-2018-7569
https://attackerkb.com/topics/CVE-2018-7569

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report