cve/2020/CVE-2020-16593.md

CVE-2020-16593

Description

A Null Pointer Dereference vulnerability exists in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.35, in scan_unit_for_symbols, as demonstrated in addr2line, that can cause a denial of service via a crafted file.

POC

Reference

• https://sourceware.org/bugzilla/show_bug.cgi?id=25827
• https://sourceware.org/bugzilla/show_bug.cgi?id=25827

Github

• https://github.com/Live-Hack-CVE/CVE-2020-16593
• https://github.com/fokypoky/places-list