CVE-2023-25586
published 2023-09-14CVE-2023-25586: A flaw was found in Binutils. A logic fail in the bfd_init_section_decompress_status function may lead to the use of an uninitialized variable that can cause a…
medium5.5CVSS 3.1
AVLACLPRNUIRSUCNINAH
A flaw was found in Binutils. A logic fail in the bfd_init_section_decompress_status function may lead to the use of an uninitialized variable that can cause a crash and local denial of service.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | binutils | < binutils 2.39.50.20221208-1 (bookworm) | binutils 2.39.50.20221208-1 (bookworm) |
| gnu | binutils | — | — |
| gnu | binutils | >= 0 < 2.39.50.20221208-1 | 2.39.50.20221208-1 |
| gnu | binutils | >= 0 < 2.39.50.20221208-1 | 2.39.50.20221208-1 |
| gnu | binutils | >= 0 < 2.39.50.20221208-1 | 2.39.50.20221208-1 |
CVSS provenance
nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
osv5.5MEDIUM