#VU76485 Heap-based buffer overflow in Binutils - CVE-2023-1579


Vulnerability identifier: #VU76485

Vulnerability risk: Medium

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2023-1579

CWE-ID: CWE-122

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Binutils
Universal components / Libraries / Libraries used by multiple products

Vendor: GNU

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary error within the bfd_getl64() function in binutils-gdb/bfd/libbfd.c. A remote attacker can pass specially crafted file to the application, trigger a heap-based buffer overflow and perform a denial of service (DoS) attack.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Binutils: 2.7 - 2.39

External links
https://sourceware.org/bugzilla/show_bug.cgi?id=29988
https://security.netapp.com/advisory/ntap-20230511-0009/
https://bugzilla.redhat.com/show_bug.cgi?id=2180905

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Amazon Linux AMI update for binutils
Multiple vulnerabilities in Dell RecoverPoint for Virtual Machines
Multiple vulnerabilities in Dell ObjectScale
Multiple vulnerabilities in Dell EMC VxRail Appliance
Red Hat Enterprise Linux 9 update for mingw components
Gentoo update for GNU Binutils
SUSE update for binutils
SUSE update for binutils
Fedora 38 update for mingw-binutils