Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2020-24240

Опубликовано: 28 июл. 2020
Источник: redhat
CVSS3: 5.5

Описание

GNU Bison before 3.7.1 has a use-after-free in _obstack_free in lib/obstack.c (called from gram_lex) when a '\0' byte is encountered. NOTE: there is a risk only if Bison is used with untrusted input, and the observed bug happens to cause unsafe behavior with a specific compiler/architecture. The bug report was intended to show that a crash may occur in Bison itself, not that a crash may occur in code that is generated by Bison.

Отчет

bison as shipped in Red Hat Enterprise Linux 7 and 8 does not reproduce this flaw. It properly detects the NULL byte and errors out accordingly instead of causing use-after-free. This is likely due to introduction of vulnerable code in a more recent version of bison.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5bisonOut of support scope
Red Hat Enterprise Linux 6bisonOut of support scope
Red Hat Enterprise Linux 7bisonNot affected
Red Hat Enterprise Linux 8bisonNot affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-416
https://bugzilla.redhat.com/show_bug.cgi?id=1872737bison: use-after-free via crafted input file containing a NULL byte can lead to DoS

5.5 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2020-24240

CVSS3: 5.5
ubuntu
больше 5 лет назад

GNU Bison before 3.7.1 has a use-after-free in _obstack_free in lib/obstack.c (called from gram_lex) when a '\0' byte is encountered. NOTE: there is a risk only if Bison is used with untrusted input, and the observed bug happens to cause unsafe behavior with a specific compiler/architecture. The bug report was intended to show that a crash may occur in Bison itself, not that a crash may occur in code that is generated by Bison.

nvd логотип

CVE-2020-24240

CVSS3: 5.5
nvd
больше 5 лет назад

GNU Bison before 3.7.1 has a use-after-free in _obstack_free in lib/obstack.c (called from gram_lex) when a '\0' byte is encountered. NOTE: there is a risk only if Bison is used with untrusted input, and the observed bug happens to cause unsafe behavior with a specific compiler/architecture. The bug report was intended to show that a crash may occur in Bison itself, not that a crash may occur in code that is generated by Bison.

debian логотип

CVE-2020-24240

CVSS3: 5.5
debian
больше 5 лет назад

GNU Bison before 3.7.1 has a use-after-free in _obstack_free in lib/ob ...

github логотип

GHSA-5xv5-wxfg-845r

github
больше 3 лет назад

GNU Bison 3.7 has a use after free (UAF) vulnerability. A local attacker may execute bison with crafted input file containing a NULL byte, which could triggers UAF and thus cause system crash.

5.5 Medium

CVSS3