A double free vulnerability exists in the Binary File Descriptor (BFD) (aka libbrd) in GNU Binutils 2.35 in the process_symbol_table, as demonstrated in readelf, via a crafted file.Referenceshttps://sourceware.org/bugzilla/show_bug.cgi?id=25821https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git%3Bh=c98a4545dc7bf2bcaf1de539c4eb84784680eaa4https://security.netapp.com/advisory/ntap-20210115-0003/
