AVG-1385 log

Package	binutils
Status	Fixed
Severity	Medium
Type	multiple issues
Affected	2.35.1-1
Fixed	2.36-1
Current	2.43+r4+g7999dae6961-1 [core]
Ticket	None
Created	Sun Dec 27 12:09:15 2020

Issue	Severity	Remote	Type	Description
CVE-2021-20294	Medium	No	Arbitrary code execution	A security issue was found in binutils before version 2.36. It allows attackers to cause a denial of service (stack buffer overflow) or possibly have...
CVE-2021-3487	Low	No	Denial of service	A security issue was found in the BFD library of binutils before version 2.36. read_section() in dwarf2.c of BFD could cause excessive memory consumption...
CVE-2020-35448	Low	No	Information disclosure	An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.35.1. A heap-based buffer over-read can...

Issue

Severity

Remote

Type

Description

CVE-2021-20294

Medium

Arbitrary code execution

A security issue was found in binutils before version 2.36. It allows attackers to cause a denial of service (stack buffer overflow) or possibly have...

CVE-2021-3487

Low

Denial of service

A security issue was found in  the BFD library of binutils before version 2.36. read_section() in dwarf2.c of BFD could cause excessive memory consumption...

CVE-2020-35448

Low

Information disclosure

An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.35.1. A heap-based buffer over-read can...