Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2022-47011

Опубликовано: 18 июн. 2022
Источник: redhat
CVSS3: 5.5
EPSS Низкий

Описание

An issue was discovered function parse_stab_struct_fields in stabs.c in Binutils 2.34 thru 2.38, allows attackers to cause a denial of service due to memory leaks.

A memory leak flaw was found in binutils. This flaw allows an attacker to use a set of steps to trigger a memory leak and perform a denial of service, resulting in a loss of the system's availability.

Отчет

Red Hat has determined this flaw to be of low impact as the memory leak identified would need to be triggered repeatedly (for example in a long-running process) to eventually cause binutils to crash and is itself more of a resource exhaustion issue than an exploitable vulnerability.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 6binutilsOut of support scope
Red Hat Enterprise Linux 7binutilsOut of support scope
Red Hat Enterprise Linux 7gdbOut of support scope
Red Hat Enterprise Linux 8binutilsWill not fix
Red Hat Enterprise Linux 8gcc-toolset-11-binutilsFix deferred
Red Hat Enterprise Linux 8gcc-toolset-11-gdbNot affected
Red Hat Enterprise Linux 8gcc-toolset-12-binutilsFix deferred
Red Hat Enterprise Linux 8gcc-toolset-12-gdbNot affected
Red Hat Enterprise Linux 8gcc-toolset-13-binutilsFix deferred
Red Hat Enterprise Linux 8gcc-toolset-13-gdbAffected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low
Дефект:
CWE-400
https://bugzilla.redhat.com/show_bug.cgi?id=2233992binutils: memory leak in parse_stab_struct_fields() in stabs.c

EPSS

Процентиль: 1%
0.00009
Низкий

5.5 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2022-47011

CVSS3: 5.5
ubuntu
почти 2 года назад

An issue was discovered function parse_stab_struct_fields in stabs.c in Binutils 2.34 thru 2.38, allows attackers to cause a denial of service due to memory leaks.

nvd логотип

CVE-2022-47011

CVSS3: 5.5
nvd
почти 2 года назад

An issue was discovered function parse_stab_struct_fields in stabs.c in Binutils 2.34 thru 2.38, allows attackers to cause a denial of service due to memory leaks.

msrc логотип

CVE-2022-47011

CVSS3: 5.5
msrc
6 месяцев назад

Описание отсутствует

debian логотип

CVE-2022-47011

CVSS3: 5.5
debian
почти 2 года назад

An issue was discovered function parse_stab_struct_fields in stabs.c i ...

github логотип

GHSA-8f5c-3xjx-x46g

CVSS3: 5.5
github
почти 2 года назад

An issue was discovered function parse_stab_struct_fields in stabs.c in Binutils 2.34 thru 2.38, allows attackers to cause a denial of service due to memory leaks.

EPSS

Процентиль: 1%
0.00009
Низкий

5.5 Medium

CVSS3