Multiple memory corruption issues have been found in libbfd which is part of binutils. These may allow attacks if some of the tools like objdump, nm or strings are used on untrusted inputs. These issues have been found by multiple people through fuzzing and if I haven't lost oversight six CVEs have been assigned (I wouldn't be surprised if more issues pop up and I encourage everyone to look for them). Upstream bug reports: https://sourceware.org/bugzilla/show_bug.cgi?id=17510 https://sourceware.org/bugzilla/show_bug.cgi?id=17512 All of these are fixed in the upcoming binutils 2.25 branch.
still largely a non-issue *** This bug has been marked as a duplicate of bug 526626 ***
Releasing CVE alias to use it in the original bug.