CVE-2021-3549 - log back

CVE-2021-3549 edited at 26 May 2021 07:50:54
Severity
- Unknown
+ Low
Remote
- Unknown
+ Local
Type
- Unknown
+ Arbitrary code execution
Description
+ An out of bounds write security issue was found in GNU binutils objdump utility version 2.36.1. An attacker could use this flaw and pass a large section to avr_elf32_load_records_from_section(), probably resulting in a crash or in some cases memory corruption.
References
+ https://bugzilla.redhat.com/show_bug.cgi?id=1960717
+ https://sourceware.org/bugzilla/show_bug.cgi?id=27294
+ https://sourceware.org/git/?p=binutils-gdb.git;a=commitdiff;h=1cfcf3004e1830f8fe9112cfcd15285508d2c2b7
Notes
CVE-2021-3549 created at 26 May 2021 07:48:31