A flaw was found in binutils readelf 2.35 program. An attacker who is able to convince a victim using readelf to read a crafted file could trigger a stack buffer overflow, out-of-bounds write of arbitrary data supplied by the attacker. The highest impact of this flaw is to confidentiality, integrity, and availability.

CWE: CWE-119

CVSS 2: MEDIUM – 6.8 (Version: 2.0)
CVSS 3: HIGH – 7.8 (Version: 3.1)


NVD – CVE-2021-20294
CVE – CVE-2021-20294

Link (max. 20) Quelle Tags MISC Issue Tracking Third Party Advisory MISC Exploit Issue Tracking Patch Third Party Advisory

Quelle: NVD – CVE-2021-20294
Datum Veröffentlichung: 2021-04-29T16:15Z, Datum letzte Änderung: 2021-05-09T01:34Z