CVE-2021-20197
published 2021-03-26CVE-2021-20197: There is an open race window when writing output in the following utilities in GNU binutils version 2.35 and earlier:ar, objcopy, strip, ranlib. When these…
medium6.3CVSS 3.1
AVLACHPRLUINSUCHIHAN
There is an open race window when writing output in the following utilities in GNU binutils version 2.35 and earlier:ar, objcopy, strip, ranlib. When these utilities are run as a privileged user (presumably as part of a script updating binaries across different users), an unprivileged user can trick these utilities into getting ownership of arbitrary files through a symlink.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | binutils | < binutils 2.37-3 (bookworm) | binutils 2.37-3 (bookworm) |
| gnu | binutils | <= 2.35 | — |
| gnu | binutils | — | — |
| gnu | binutils | >= 0 < 2.37-3 | 2.37-3 |
| gnu | binutils | >= 0 < 2.37-3 | 2.37-3 |
| gnu | binutils | >= 0 < 2.37-3 | 2.37-3 |
| msrc | azl3_crash_8.0.4-3_on_azure_linux_3.0 | — | — |
| msrc | azl3_crash_8.0.4-4_on_azure_linux_3.0 | — | — |
| msrc | cbl_mariner_1.0_arm | — | — |
| msrc | cbl_mariner_1.0_x64 | — | — |
| redhat | enterprise_linux | — | — |
CVSS provenance
nvdv3.16.3MEDIUMCVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N
osv6.3MEDIUM