https://bugzilla.redhat.com/show_bug.cgi?id=1162594
--- Doc Text *updated* by Martin Prpic mprpic@redhat.com --- It was found that the fix for the CVE-2014-8485 issue was incomplete: a heap-based buffer overflow in the objdump utility could cause it to crash or, potentially, execute arbitrary code with the privileges of the user running objdump when processing specially crafted files.