new file mode 100644

@@ -0,0 +1,15 @@

+diff --git a/bfd/dwarf2.c b/bfd/dwarf2.c

+index ca22db7..0f8257f 100644

+--- a/bfd/dwarf2.c

+@@ -1566,7 +1566,7 @@ concat_filename (struct line_info_table *table, unsigned int file)

+ {

+   char *filename;

+ 

+-  if (file - 1 >= table->num_files)

++  if (table == NULL || file - 1 >= table->num_files)

+     {

+       /* FILE == 0 means unknown.  */

+       if (file)

+-- 

+2.9.3

@@ -1,7 +1,7 @@

 Summary:        Contains a linker, an assembler, and other tools

 Name:           binutils

 Version:        2.30

-Release:        3%{?dist}

+Release:        4%{?dist}

 License:        GPLv2+

 URL:            http://www.gnu.org/software/binutils

 Group:          System Environment/Base

@@ -10,6 +10,7 @@ Distribution:   Photon

 Source0:        http://ftp.gnu.org/gnu/binutils/%{name}-%{version}.tar.xz

 %define sha1 binutils=574d3b5650413d6ee65195a4f5ecbddc3a38f718

 Patch0:         binutils-2.30-CVE-2018-6543.patch

+Patch1:         binutils-2.30-CVE-2018-10373.patch

 %description

 The Binutils package contains a linker, an assembler,

 and other tools for handling object files.

@@ -22,6 +23,7 @@ for handling compiled objects.

 %prep

 %setup -q

 %patch0 -p1

+%patch1 -p1

 %build

 install -vdm 755 ../binutils-build

 cd ../binutils-build

@@ -111,6 +113,8 @@ make %{?_smp_mflags} check

 %{_lib64dir}/libiberty.a

 %changelog

+*   Thu Jun 7 2018 Keerthana K <keerthanak@vmware.com> 2.30-4

+-   Fix CVE-2018-10373

 *   Mon Mar 19 2018 Alexey Makhalov <amakhalov@vmware.com> 2.30-3

 -   Add libiberty to the -devel package

 *   Wed Feb 28 2018 Xiaolin Li <xiaolinl@vmware.com> 2.30-2