Fix CVE-2019-17451

SPECS/binutils/CVE-2019-17451.patch

@@ -0,0 +1,20 @@
+--- a/bfd/dwarf2.c
++++ b/bfd/dwarf2.c
+@@ -4426,7 +4425,16 @@
+       for (total_size = 0;
+ 	   msec;
+ 	   msec = find_debug_info (debug_bfd, debug_sections, msec))
+-	total_size += msec->size;
++    {
++      /* Catch PR25070 testcase overflowing size calculation here.  */
++      if (total_size + msec->size < total_size
++          || total_size + msec->size < msec->size)
++       {
++         bfd_set_error (bfd_error_no_memory);
++         return FALSE;
++       }
++      total_size += msec->size;
++    }
+ 
+       stash->info_ptr_memory = (bfd_byte *) bfd_malloc (total_size);
+       if (stash->info_ptr_memory == NULL)

SPECS/binutils/binutils.spec

@@ -22,6 +22,7 @@ Patch9:         CVE-2019-9074.patch
 # Binutils community does not consider this a bug
 Patch10:        CVE-2019-9076.nopatch
 Patch11:        CVE-2019-17450.patch
+Patch12:        CVE-2019-17451.patch
 
 %description
 The Binutils package contains a linker, an assembler,
@@ -46,6 +47,7 @@ for handling compiled objects.
 %patch8 -p1
 %patch9 -p1
 %patch11 -p1
+%patch12 -p1
 
 %build
 %configure \
@@ -139,6 +141,7 @@ make %{?_smp_mflags} check
 -   Fix CVE-2019-9074.
 -   No patch CVE-2019-9076.
 -   Fix CVE-2019-17450.
+-   Fix CVE-2019-17451.
 *   Sat May 09 2020 Nick Samson <nisamson@microsoft.com> 2.32-3
 -   Added %%license line automatically
 *   Wed May 06 2020 Nicolas Ontiveros <niontive@microsoft.com> 2.32-2