Illegal Memory Access Issue in Binutils by GNU
CVE-2022-4285

5.5MEDIUM

Key Information:

Vendor: Gnu
Status: Binutils
Vendor: CVE Published:; 27 January 2023

What is CVE-2022-4285?

An illegal memory access flaw exists in the Binutils package, where parsing an ELF file with corrupt symbol version information may trigger a denial of service. This vulnerability stems from an incomplete fix for a previous issue, which underscores the importance of vigilant security practices in software development.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

binutils binutils 2.39-7

References

https://sourceware.org/bugzilla/show_bug.cgi?id=29699

https://bugzilla.redhat.com/show_bug.cgi?id=2150768

https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git%...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Jan 27, 2023
Vulnerability Reserved
Dec 5, 2022

JSON

Gnu

What is CVE-2022-4285?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.