{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"moderate"},"category":"csaf_vex","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"SUSE CVE-2017-17124","title":"Title"},{"category":"description","text":"The _bfd_coff_read_string_table function in coffgen.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29.1, does not properly validate the size of the external string table, which allows remote attackers to cause a denial of service (excessive memory consumption, or heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted COFF binary.","title":"Description of the CVE"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"CVE-2017-17124","url":"https://www.suse.com/security/cve/CVE-2017-17124"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 1071078 for CVE-2017-17124","url":"https://bugzilla.suse.com/1071078"}],"title":"SUSE CVE CVE-2017-17124","tracking":{"current_release_date":"2025-02-18T07:26:20Z","generator":{"date":"2023-02-15T04:36:58Z","engine":{"name":"cve-database.git:bin/generate-csaf-vex.pl","version":"1"}},"id":"CVE-2017-17124","initial_release_date":"2023-02-15T04:36:58Z","revision_history":[{"date":"2023-02-15T04:36:58Z","number":"2","summary":"Current version"},{"date":"2025-01-01T08:18:13Z","number":"3","summary":"Current version"},{"date":"2025-02-18T07:26:20Z","number":"4","summary":"Current version"}],"status":"interim","version":"4"}}}