CVE-2022-38533

Updated: 2022-12-08 01:07:20.706161

Description:

In GNU Binutils before 2.40, there is a heap-buffer-overflow in the error function bfd_getl32 when called from the strip_main function in strip-new via a crafted file.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x 0
CVSS Version 3.x MEDIUM 5.5

Status

OS name Project name Version Score Severity Status Errata Last updated
CentOS 6 ELS binutils 2.20 5.5 MEDIUM Ignored 2022-09-01 08:02:11
CentOS 8.4 ELS binutils 2.30-93 5.5 MEDIUM Ignored 2022-09-01 08:02:10
CentOS 8.5 ELS binutils 2.30-108 5.5 MEDIUM Ignored 2022-09-01 08:02:10
CloudLinux 6 ELS binutils 2.20 5.5 MEDIUM Ignored 2022-09-01 08:02:11
Oracle Linux 6 ELS binutils 2.20 5.5 MEDIUM Ignored 2022-09-01 08:02:10
Ubuntu 16.04 ELS binutils 2.26 5.5 MEDIUM Released CLSA-2022:1670606482 2022-12-09 13:04:21

Statement

Will not fix: low score