Description
An illegal memory access flaw was found in the binutils package. Parsing an ELF file containing corrupt symbol version information may result in a denial of service. This issue is the result of an incomplete fix for CVE-2020-16599.
References
https://bugzilla.redhat.com/show_bug.cgi?id=2150768
ExploitIssue TrackingPatchThird Party Advisory
https://sourceware.org/bugzilla/show_bug.cgi?id=29699
ExploitIssue TrackingPatchVendor Advisory
CVSS impact metrics
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
5.5 · Medium
CVSS V3.1
CVSS V3.0
CVSS V2.0
Information
Source identifier
Vulnerability status
Modified
Published
2023-01-27T18:15:15.977
2 years agoLast modified
2023-11-07T03:57:25.527
1 year ago