CVE-2021-20294

Beschreibung:
A flaw was found in binutils readelf 2.35 program. An attacker who is able to convince a victim using readelf to read a crafted file could trigger a stack buffer overflow, out-of-bounds write of arbitrary data supplied by the attacker. The highest impact of this flaw is to confidentiality, integrity, and availability.

CWE: CWE-119

CVSS-Bewertung
CVSS 2: MEDIUM – 6.8 (Version: 2.0)
CVSS 3: HIGH – 7.8 (Version: 3.1)

Links:

NVD – CVE-2021-20294
CVE – CVE-2021-20294

Link (max. 20) Quelle Tags
https://bugzilla.redhat.com/show_bug.cgi?id=1943533 MISC Issue Tracking Third Party Advisory
https://sourceware.org/bugzilla/show_bug.cgi?id=26929 MISC Exploit Issue Tracking Patch Third Party Advisory

Quelle: NVD – CVE-2021-20294
Datum Veröffentlichung: 2021-04-29T16:15Z, Datum letzte Änderung: 2021-05-09T01:34Z