There's a flaw in bfd_pef_scan_start_address() of bfd/pef.c in binutils which could allow an attacker who is able to submit a crafted file to be processed by objdump to cause a NULL pointer dereference. The greatest threat of this flaw is to application availability. This flaw affects binutils versions prior to 2.34.
| Product | Vendor | Version |
|---|---|---|
| binutils | n/a | <= 6.1.* |
| binutils | n/a | < 8ab3b8f958d861a7f725a5be60769106509fbd69 |