vulnerability

Debian: CVE-2021-3549: binutils -- security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
6	(AV:N/AC:M/Au:N/C:N/I:P/A:P)	May 26, 2021	Jul 30, 2024	Aug 15, 2025

Severity

CVSS

(AV:N/AC:M/Au:N/C:N/I:P/A:P)

Published

May 26, 2021

Added

Jul 30, 2024

Modified

Aug 15, 2025

Description

An out of bounds flaw was found in GNU binutils objdump utility version 2.36. An attacker could use this flaw and pass a large section to avr_elf32_load_records_from_section() probably resulting in a crash or in some cases memory corruption. The highest threat from this vulnerability is to integrity as well as system availability.

Solutions

debian-upgrade-binutilsno-fix-debian-deb-package

References

CVE-2021-3549
https://attackerkb.com/topics/CVE-2021-3549
CWE-119
CWE-787

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today