On Tue, Mar 05, 2024 at 09:16:51PM +0200, Itay Beladev wrote: > There is an integer overflow in strings.c, which can lead to heap overflow > leading to RCE on the strings binary.
This is https://sourceware.org/bugzilla/show_bug.cgi?id=30595 and https://sourceware.org/bugzilla/show_bug.cgi?id=30598 which were fixed in June 2023. $ binutils/strings -n 4294967295 /usr/bin/strings binutils/strings: minimum string length 4294967295 is too big -- Alan Modra Australia Development Lab, IBM
