Описание
A weakness has been identified in GNU Binutils 2.45. The affected element is the function vfinfo of the file ldmisc.c. Executing manipulation can lead to out-of-bounds read. The attack can only be executed locally. The exploit has been made available to the public and could be exploited. This patch is called 16357. It is best practice to apply a patch to resolve this issue.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 2.45.50.20251125-1ubuntu1 |
| esm-infra-legacy/trusty | released | 2.24-5ubuntu14.2+esm7 |
| esm-infra/bionic | released | 2.30-21ubuntu1~18.04.9+esm5 |
| esm-infra/focal | released | 2.34-6ubuntu1.11+esm1 |
| esm-infra/xenial | released | 2.26.1-1ubuntu1~16.04.8+esm13 |
| jammy | released | 2.38-4ubuntu2.11 |
| noble | released | 2.42-4ubuntu2.7 |
| plucky | released | 2.44-3ubuntu1.2 |
| questing | released | 2.45-7ubuntu1.1 |
| upstream | released | 2.46 |
Показывать по
Ссылки на источники
EPSS
1.7 Low
CVSS2
3.3 Low
CVSS3
Связанные уязвимости
A weakness has been identified in GNU Binutils 2.45. The affected element is the function vfinfo of the file ldmisc.c. Executing manipulation can lead to out-of-bounds read. The attack can only be executed locally. The exploit has been made available to the public and could be exploited. This patch is called 16357. It is best practice to apply a patch to resolve this issue.
A weakness has been identified in GNU Binutils 2.45. The affected elem ...
A weakness has been identified in GNU Binutils 2.45. The affected element is the function vfinfo of the file ldmisc.c. Executing manipulation can lead to out-of-bounds read. The attack can only be executed locally. The exploit has been made available to the public and could be exploited. This patch is called 16357. It is best practice to apply a patch to resolve this issue.
EPSS
1.7 Low
CVSS2
3.3 Low
CVSS3