CVE-2023-25586
4.7MEDIUMA flaw was found in Binutils. A logic fail in the bfd_init_section_decompress_status function may lead to the use of an uninitialized variable that can cause a crash and local denial of service.
Publicado: 9/14/2023Actualizado: 11/21/2024
Descripción
A flaw was found in Binutils. A logic fail in the bfd_init_section_decompress_status function may lead to the use of an uninitialized variable that can cause a crash and local denial of service.
Análisis IAImpulsado por IA
Productos Afectados
gnubinutils
2.40
Referencias
- https://access.redhat.com/security/cve/CVE-2023-25586Third Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2167502ExploitIssue TrackingPatch
- https://security.netapp.com/advisory/ntap-20231103-0003/
- https://sourceware.org/bugzilla/show_bug.cgi?id=29855ExploitIssue TrackingPatch
- https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=5830876a0cca17bef3b2d54908928e72cca53502Mailing ListPatch
- https://access.redhat.com/security/cve/CVE-2023-25586Third Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2167502ExploitIssue TrackingPatch
- https://security.netapp.com/advisory/ntap-20231103-0003/
- https://sourceware.org/bugzilla/show_bug.cgi?id=29855ExploitIssue TrackingPatch
- https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=5830876a0cca17bef3b2d54908928e72cca53502Mailing ListPatch