PT-2023-6124 · Gnu+6 · Binutils+6

Yuxuan He

Publicado

2023-08-22

Atualizado

2025-01-28

CVE-2022-47008

CVSS v3.1

5.5

Média

Vetor

AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Binutils versions 2.34 through 2.38

Description The issue is related to memory leaks in the make tempdir and make tempname functions in bucomm.c. This can allow attackers to cause a denial of service. The vulnerability is associated with memory deallocation errors, which can be exploited to disrupt service.

Recommendations For Binutils versions 2.34 through 2.38, consider disabling the make tempdir and make tempname functions in bucomm.c as a temporary workaround to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Memory Leak

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-401

Identificadores relacionados

ALT-PU-2024-9331

AZL-28053

BDU:2023-06830

CVE-2022-47008

OESA-2023-1570

ROSA-SA-2025-2645

USN-6413-1

USN-6581-1

Produtos afetados

Alt Linux

Astra Linux

Binutils

Debian

Linuxmint

Red Os

Ubuntu

PT-2023-6124 · Gnu+6 · Binutils+6

CVE-2022-47008

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 38