Описание
In GNU Binutils 2.31.1, there is a use-after-free in the error function in elfcomm.c when called from the process_archive function in readelf.c via a crafted ELF file.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 2.30-21ubuntu1~18.04.3 |
| cosmic | ignored | end of life |
| devel | not-affected | 2.32-8ubuntu1 |
| disco | ignored | end of life |
| eoan | not-affected | 2.32-8ubuntu1 |
| esm-infra-legacy/trusty | needed | |
| esm-infra/bionic | released | 2.30-21ubuntu1~18.04.3 |
| esm-infra/focal | not-affected | 2.32-8ubuntu1 |
| esm-infra/xenial | released | 2.26.1-1ubuntu1~16.04.8+esm1 |
| focal | not-affected | 2.32-8ubuntu1 |
Показывать по
EPSS
4.3 Medium
CVSS2
5.5 Medium
CVSS3
Связанные уязвимости
In GNU Binutils 2.31.1, there is a use-after-free in the error function in elfcomm.c when called from the process_archive function in readelf.c via a crafted ELF file.
In GNU Binutils 2.31.1, there is a use-after-free in the error function in elfcomm.c when called from the process_archive function in readelf.c via a crafted ELF file.
In GNU Binutils 2.31.1, there is a use-after-free in the error functio ...
In GNU Binutils 2.31.1, there is a use-after-free in the error function in elfcomm.c when called from the process_archive function in readelf.c via a crafted ELF file.
Уязвимость функции в файле elfcomm.c в GNU Binutils, связанная с обращением к памяти после ее освобождения, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
4.3 Medium
CVSS2
5.5 Medium
CVSS3