PT-2023-6124 · Gnu+6 · Binutils+6

Yuxuan He

Published

2023-08-22

Updated

2025-01-28

CVE-2022-47008

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Binutils versions 2.34 through 2.38

Description The issue is related to memory leaks in the make tempdir and make tempname functions in bucomm.c. This can allow attackers to cause a denial of service. The vulnerability is associated with memory deallocation errors, which can be exploited to disrupt service.

Recommendations For Binutils versions 2.34 through 2.38, consider disabling the make tempdir and make tempname functions in bucomm.c as a temporary workaround to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Memory Leak

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-401

Related Identifiers

ALT-PU-2024-9331

AZL-28053

BDU:2023-06830

CVE-2022-47008

OESA-2023-1570

ROSA-SA-2025-2645

USN-6413-1

USN-6581-1

Affected Products

Alt Linux

Astra Linux

Binutils

Debian

Linuxmint

Red Os

Ubuntu

PT-2023-6124 · Gnu+6 · Binutils+6

CVE-2022-47008

Weakness Enumeration

Related Identifiers

Affected Products

References · 38