PT-2023-13441 · Binutils+2 · Binutils+2

Hex Rabbit

Publicado

2023-08-22

Atualizado

2024-06-15

CVE-2022-35206

CVSS v3.1

5.5

Média

Vetor

AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Binutils readelf version 2.38.50

Description A null pointer dereference issue exists in the readelf component of Binutils, specifically in the function read and display attr value within the file dwarf.c. This issue can be triggered, potentially leading to a crash or other unintended behavior.

Recommendations For Binutils readelf version 2.38.50, consider applying a patch or update that fixes the null pointer dereference vulnerability in the read and display attr value function. As a temporary workaround, restrict the use of the read and display attr value function until a patch is available.

Exploit

Correção

NULL Pointer Dereference

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-476

Identificadores relacionados

CVE-2022-35206

OPENSUSE-SU-2023_3825-1

OPENSUSE-SU-2024:13411-1

SUSE-SU-2023:3695-1

SUSE-SU-2023:3825-1

Produtos afetados

Binutils

Debian

Suse

PT-2023-13441 · Binutils+2 · Binutils+2

CVE-2022-35206

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 54