vulnerability

Ubuntu: (Multiple Advisories) (CVE-2020-16592): GNU binutils vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:M/Au:N/C:N/I:N/A:P)	Dec 9, 2020	Oct 26, 2021	Nov 7, 2024

Severity

CVSS

(AV:N/AC:M/Au:N/C:N/I:N/A:P)

Published

Dec 9, 2020

Added

Oct 26, 2021

Modified

Nov 7, 2024

Description

A use after free issue exists in the Binary File Descriptor (BFD) library (aka libbfd) in GNU Binutils 2.34 in bfd_hash_lookup, as demonstrated in nm-new, that can cause a denial of service via a crafted file.

Solution(s)

ubuntu-upgrade-binutilsubuntu-upgrade-binutils-multiarch

References

CVE-2020-16592
https://attackerkb.com/topics/CVE-2020-16592
NVD-CVE-2020-16592
UBUNTU-USN-5124-1
UBUNTU-USN-5341-1

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today