CVE-2023-1972

Опубликовано: 17 мая 2023

Источник: nvd

CVSS3: 6.5

EPSS Низкий

Описание

A potential heap based buffer overflow was found in _bfd_elf_slurp_version_tables() in bfd/elf.c. This may lead to loss of availability.

Ссылки

https://bugzilla.redhat.com/show_bug.cgi?id=2185646
Issue Tracking
https://security.gentoo.org/glsa/202309-15
https://sourceware.org/bugzilla/show_bug.cgi?id=30285
Issue Tracking
Patch
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2185646
Issue Tracking
https://security.gentoo.org/glsa/202309-15
https://sourceware.org/bugzilla/show_bug.cgi?id=30285
Issue Tracking
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:gnu:binutils:*:*:*:*:*:*:*:*

Версия от 2.35 (включая) до 2.40 (включая)

EPSS

Процентиль: 14%

0.00045

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-119

CWE-787

Связанные уязвимости

CVE-2023-1972

CVSS3: 6.5

ubuntu

около 2 лет назад

A potential heap based buffer overflow was found in _bfd_elf_slurp_version_tables() in bfd/elf.c. This may lead to loss of availability.

CVE-2023-1972

CVSS3: 2.5

redhat

около 2 лет назад

A potential heap based buffer overflow was found in _bfd_elf_slurp_version_tables() in bfd/elf.c. This may lead to loss of availability.

CVE-2023-1972

CVSS3: 6.5

msrc

6 месяцев назад

Описание отсутствует

CVE-2023-1972

CVSS3: 6.5

debian

около 2 лет назад

A potential heap based buffer overflow was found in _bfd_elf_slurp_ver ...

GHSA-gxpx-hfgx-m75g

CVSS3: 6.5

github

около 2 лет назад

A potential heap based buffer overflow was found in _bfd_elf_slurp_version_tables() in bfd/elf.c. This may lead to loss of availability.

EPSS

Процентиль: 14%

0.00045

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-119

CWE-787