Memory Leak Vulnerability in Binutils by GNU
CVE-2022-47007

5.5MEDIUM

Key Information:

Vendor: Gnu
Status: Binutils
Vendor: CVE Published:; 22 August 2023

Summary

A vulnerability exists in the 'stab_demangle_v3_arg' function within 'stabs.c' in the Binutils package, versions 2.34 through 2.38. This issue allows attackers to exploit memory leaks, leading to potential denial of service conditions. Proper mitigation strategies should be considered to prevent exploitation.

References

https://sourceware.org/bugzilla/show_bug.cgi?id=29254

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Aug 22, 2023
Vulnerability Reserved
Dec 12, 2022