CVE-2022-48063
22.08.2023, 19:16
GNU Binutils before 2.40 was discovered to contain an excessive memory consumption vulnerability via the function load_separate_debug_files at dwarf2.c. The attacker could supply a crafted ELF file and cause a DNS attack.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| gnu | binutils | 𝑥 < 2.40 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
openSUSE / SLES Releases
openSUSE Product | |||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| binutils |
| ||||||||||||||||||||||||||||||||||||||||||
| binutils-devel |
| ||||||||||||||||||||||||||||||||||||||||||
| binutils-devel-32bit |
| ||||||||||||||||||||||||||||||||||||||||||
| libctf-nobfd0 |
| ||||||||||||||||||||||||||||||||||||||||||
| libctf0 |
|
References