Описание
A heap-based buffer over-read exists in the function d_expression_1 in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31.1. A crafted input can cause segmentation faults, leading to denial-of-service, as demonstrated by c++filt.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | 20170913-1ubuntu0.1 |
| cosmic | ignored | end of life |
| devel | not-affected | 20210106-1 |
| disco | ignored | end of life |
| eoan | ignored | end of life |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was deferred [2020-03-09]] |
| esm-infra/bionic | not-affected | 20170913-1ubuntu0.1 |
| esm-infra/focal | not-affected | 20200409-1 |
| esm-infra/xenial | deferred | 2020-03-09 |
| focal | not-affected | 20200409-1 |
Показывать по
Ссылки на источники
EPSS
4.3 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
A heap-based buffer over-read exists in the function d_expression_1 in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31.1. A crafted input can cause segmentation faults, leading to denial-of-service, as demonstrated by c++filt.
A heap-based buffer over-read exists in the function d_expression_1 in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31.1. A crafted input can cause segmentation faults, leading to denial-of-service, as demonstrated by c++filt.
A heap-based buffer over-read exists in the function d_expression_1 in ...
A heap-based buffer over-read exists in the function d_expression_1 in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31.1. A crafted input can cause segmentation faults, leading to denial-of-service, as demonstrated by c++filt.
Уязвимость функции d_expression_1 компонента cp-demangle.c программного средства разработки GNU Binutils, связанная с чтением за допустимыми границами буфера данных, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
4.3 Medium
CVSS2
6.5 Medium
CVSS3