CVE-2021-32256Out-of-bounds Write in Binutils

CWE-787Out-of-bounds WriteCWE-121Stack-based Buffer Overflow7 documents7 sources
Severity
6.5MEDIUMNVD
EPSS
0.1%
top 68.40%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
GNU Binutils
Timeline
PublishedJul 18

Description

An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.36. It is a stack-overflow issue in demangle_type in rust-demangle.c.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages1 packages

NVDgnu/binutils2.36

🔴Vulnerability Details

3
OSV
CVE-2021-32256: An issue was discovered in GNU libiberty, as distributed in GNU Binutils 22023-07-18
CVEList
CVE-2021-32256: An issue was discovered in GNU libiberty, as distributed in GNU Binutils 22023-07-18
GHSA
GHSA-rqxx-65jr-rfpc: An issue was discovered in GNU libiberty, as distributed in GNU Binutils 22023-07-18

📋Vendor Advisories

3
Red Hat
binutils: stack-overflow issue in demangle_type in rust-demangle.c.2023-07-18
Microsoft
An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.36. It is a stack-overflow issue in demangle_type in rust-demangle.c.2023-07-11
Debian
CVE-2021-32256: binutils - An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.36. I...2021
CVE-2021-32256 — Out-of-bounds Write in GNU Binutils | cvebase