UBUNTU-CVE-2018-12698

Source
https://ubuntu.com/security/CVE-2018-12698
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2018/UBUNTU-CVE-2018-12698.json
JSON Data
https://api.osv.dev/v1/vulns/UBUNTU-CVE-2018-12698
Upstream
Downstream
Related
Published
2018-06-23T23:29:00Z
Modified
2025-09-08T16:44:55Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
  • Ubuntu - low
Summary
[none]
Details

demangle_template in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.30, allows attackers to trigger excessive memory consumption (aka OOM) during the "Create an array for saving the template argument values" XNEWVEC call. This can occur during execution of objdump.

References

Affected packages

Ubuntu:Pro:14.04:LTS / binutils

Package

Name
binutils
Purl
pkg:deb/ubuntu/binutils@2.24-5ubuntu14.2+esm6?arch=source&distro=esm-infra-legacy/trusty

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

2.*

2.23.52.20130913-0ubuntu1
2.23.90.20131017-1ubuntu1
2.23.90.20131116-1ubuntu1
2.23.91.20131123-1ubuntu1
2.24-1ubuntu1
2.24-1ubuntu2
2.24-2ubuntu1
2.24-2ubuntu2
2.24-2ubuntu3
2.24-4ubuntu1
2.24-5ubuntu1
2.24-5ubuntu2
2.24-5ubuntu3
2.24-5ubuntu3.1
2.24-5ubuntu13
2.24-5ubuntu14
2.24-5ubuntu14.1
2.24-5ubuntu14.2
2.24-5ubuntu14.2+esm1
2.24-5ubuntu14.2+esm2
2.24-5ubuntu14.2+esm3
2.24-5ubuntu14.2+esm5
2.24-5ubuntu14.2+esm6

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "binutils",
            "binary_version": "2.24-5ubuntu14.2+esm6"
        },
        {
            "binary_name": "binutils-dev",
            "binary_version": "2.24-5ubuntu14.2+esm6"
        },
        {
            "binary_name": "binutils-multiarch",
            "binary_version": "2.24-5ubuntu14.2+esm6"
        },
        {
            "binary_name": "binutils-multiarch-dev",
            "binary_version": "2.24-5ubuntu14.2+esm6"
        },
        {
            "binary_name": "binutils-source",
            "binary_version": "2.24-5ubuntu14.2+esm6"
        },
        {
            "binary_name": "binutils-static",
            "binary_version": "2.24-5ubuntu14.2+esm6"
        }
    ]
}

Ubuntu:16.04:LTS / libiberty

Package

Name
libiberty
Purl
pkg:deb/ubuntu/libiberty@20160215-1ubuntu0.3?arch=source&distro=xenial

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
20160215-1ubuntu0.3

Affected versions

Other

20141014-1
20160215-1

20160215-1ubuntu0.*

20160215-1ubuntu0.2

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_name": "libiberty-dev",
            "binary_version": "20160215-1ubuntu0.3"
        }
    ]
}

Ubuntu:Pro:16.04:LTS / binutils

Package

Name
binutils
Purl
pkg:deb/ubuntu/binutils@2.26.1-1ubuntu1~16.04.8+esm1?arch=source&distro=esm-infra/xenial

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.26.1-1ubuntu1~16.04.8+esm1

Affected versions

2.*

2.25.1-6ubuntu1
2.25.51.20151022-0ubuntu2
2.25.51.20151022-0ubuntu3
2.25.51.20151027-0ubuntu1
2.25.51.20151028-0ubuntu1
2.25.51.20151106-0ubuntu1
2.25.51.20151113-1ubuntu1
2.25.51.20151113-2ubuntu1
2.25.90.20151125-1ubuntu1
2.25.90.20151125-2ubuntu1
2.25.90.20151211-0ubuntu1
2.25.90.20151211-0ubuntu2
2.25.90.20160101-1ubuntu1
2.25.90.20160101-1ubuntu2
2.26-2ubuntu1
2.26-3ubuntu1
2.26-4ubuntu1
2.26-5ubuntu1
2.26-6ubuntu1
2.26-7ubuntu2
2.26-8ubuntu1
2.26-8ubuntu2
2.26-8ubuntu2.1
2.26.1-1ubuntu1~16.04
2.26.1-1ubuntu1~16.04.1
2.26.1-1ubuntu1~16.04.3
2.26.1-1ubuntu1~16.04.4
2.26.1-1ubuntu1~16.04.5
2.26.1-1ubuntu1~16.04.6
2.26.1-1ubuntu1~16.04.7
2.26.1-1ubuntu1~16.04.8

Ecosystem specific

{
    "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
    "binaries": [
        {
            "binary_name": "binutils",
            "binary_version": "2.26.1-1ubuntu1~16.04.8+esm1"
        },
        {
            "binary_name": "binutils-aarch64-linux-gnu",
            "binary_version": "2.26.1-1ubuntu1~16.04.8+esm1"
        },
        {
            "binary_name": "binutils-alpha-linux-gnu",
            "binary_version": "2.26.1-1ubuntu1~16.04.8+esm1"
        },
        {
            "binary_name": "binutils-arm-linux-gnueabi",
            "binary_version": "2.26.1-1ubuntu1~16.04.8+esm1"
        },
        {
            "binary_name": "binutils-arm-linux-gnueabihf",
            "binary_version": "2.26.1-1ubuntu1~16.04.8+esm1"
        },
        {
            "binary_name": "binutils-dev",
            "binary_version": "2.26.1-1ubuntu1~16.04.8+esm1"
        },
        {
            "binary_name": "binutils-hppa-linux-gnu",
            "binary_version": "2.26.1-1ubuntu1~16.04.8+esm1"
        },
        {
            "binary_name": "binutils-hppa64-linux-gnu",
            "binary_version": "2.26.1-1ubuntu1~16.04.8+esm1"
        },
        {
            "binary_name": "binutils-m68k-linux-gnu",
            "binary_version": "2.26.1-1ubuntu1~16.04.8+esm1"
        },
        {
            "binary_name": "binutils-mips-linux-gnu",
            "binary_version": "2.26.1-1ubuntu1~16.04.8+esm1"
        },
        {
            "binary_name": "binutils-mips64-linux-gnuabi64",
            "binary_version": "2.26.1-1ubuntu1~16.04.8+esm1"
        },
        {
            "binary_name": "binutils-mips64el-linux-gnuabi64",
            "binary_version": "2.26.1-1ubuntu1~16.04.8+esm1"
        },
        {
            "binary_name": "binutils-mipsel-linux-gnu",
            "binary_version": "2.26.1-1ubuntu1~16.04.8+esm1"
        },
        {
            "binary_name": "binutils-multiarch",
            "binary_version": "2.26.1-1ubuntu1~16.04.8+esm1"
        },
        {
            "binary_name": "binutils-multiarch-dev",
            "binary_version": "2.26.1-1ubuntu1~16.04.8+esm1"
        },
        {
            "binary_name": "binutils-powerpc-linux-gnu",
            "binary_version": "2.26.1-1ubuntu1~16.04.8+esm1"
        },
        {
            "binary_name": "binutils-powerpc-linux-gnuspe",
            "binary_version": "2.26.1-1ubuntu1~16.04.8+esm1"
        },
        {
            "binary_name": "binutils-powerpc64-linux-gnu",
            "binary_version": "2.26.1-1ubuntu1~16.04.8+esm1"
        },
        {
            "binary_name": "binutils-powerpc64le-linux-gnu",
            "binary_version": "2.26.1-1ubuntu1~16.04.8+esm1"
        },
        {
            "binary_name": "binutils-s390x-linux-gnu",
            "binary_version": "2.26.1-1ubuntu1~16.04.8+esm1"
        },
        {
            "binary_name": "binutils-sh4-linux-gnu",
            "binary_version": "2.26.1-1ubuntu1~16.04.8+esm1"
        },
        {
            "binary_name": "binutils-source",
            "binary_version": "2.26.1-1ubuntu1~16.04.8+esm1"
        },
        {
            "binary_name": "binutils-sparc64-linux-gnu",
            "binary_version": "2.26.1-1ubuntu1~16.04.8+esm1"
        }
    ]
}

Ubuntu:18.04:LTS / binutils

Package

Name
binutils
Purl
pkg:deb/ubuntu/binutils@2.30-21ubuntu1~18.04.3?arch=source&distro=bionic

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.30-21ubuntu1~18.04.3

Affected versions

2.*

2.29.1-4ubuntu1
2.29.1-6ubuntu1
2.29.1-7ubuntu1
2.29.1-8ubuntu1
2.29.1-10ubuntu1
2.29.1-12ubuntu1
2.30-4ubuntu1
2.30-5ubuntu1
2.30-7ubuntu1
2.30-8ubuntu1
2.30-9ubuntu1
2.30-10ubuntu1
2.30-11ubuntu1
2.30-14ubuntu2
2.30-15ubuntu1
2.30-20ubuntu2~18.04
2.30-21ubuntu1~18.04
2.30-21ubuntu1~18.04.1
2.30-21ubuntu1~18.04.2

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_name": "binutils",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-aarch64-linux-gnu",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-alpha-linux-gnu",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-arm-linux-gnueabi",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-arm-linux-gnueabihf",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-common",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-dev",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-for-build",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-for-host",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-hppa-linux-gnu",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-hppa64-linux-gnu",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-i686-gnu",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-i686-kfreebsd-gnu",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-i686-linux-gnu",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-ia64-linux-gnu",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-m68k-linux-gnu",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-mips-linux-gnu",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-mips64-linux-gnuabi64",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-mips64-linux-gnuabin32",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-mips64el-linux-gnuabi64",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-mips64el-linux-gnuabin32",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-mipsel-linux-gnu",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-mipsisa32r6-linux-gnu",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-mipsisa32r6el-linux-gnu",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-mipsisa64r6-linux-gnuabi64",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-mipsisa64r6-linux-gnuabin32",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-mipsisa64r6el-linux-gnuabi64",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-mipsisa64r6el-linux-gnuabin32",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-multiarch",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-multiarch-dev",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-powerpc-linux-gnu",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-powerpc-linux-gnuspe",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-powerpc64-linux-gnu",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-powerpc64le-linux-gnu",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-riscv64-linux-gnu",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-s390x-linux-gnu",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-sh4-linux-gnu",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-source",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-sparc64-linux-gnu",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-x86-64-kfreebsd-gnu",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-x86-64-linux-gnu",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "binutils-x86-64-linux-gnux32",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        },
        {
            "binary_name": "libbinutils",
            "binary_version": "2.30-21ubuntu1~18.04.3"
        }
    ]
}

Ubuntu:18.04:LTS / libiberty

Package

Name
libiberty
Purl
pkg:deb/ubuntu/libiberty@20170913-1ubuntu0.1?arch=source&distro=bionic

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
20170913-1ubuntu0.1

Affected versions

Other

20170913-1

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_name": "libiberty-dev",
            "binary_version": "20170913-1ubuntu0.1"
        }
    ]
}