View at Official ubuntu advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2019-9072 low priority: Ubuntu including 1 source packages (binutils), 7 status rows across 7 suites (bionic, cosmic, disco, eoan, trusty, upstream, xenial): ignored 6, needs-triage 1.
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an attempted excessive memory allocation in setup_group in elf.c.