CVE-2022-4285
Summary
| CVE | CVE-2022-4285 |
|---|
| State | PUBLIC |
|---|
| Assigner | [email protected] |
|---|
| Source Priority | CVE Program / NVD first with legacy fallback |
|---|
| Published | 2023-01-27 18:15:00 UTC |
|---|
| Updated | 2023-11-07 03:57:00 UTC |
|---|
| Description | An illegal memory access flaw was found in the binutils package. Parsing an ELF file containing corrupt symbol version information may result in a denial of service. This issue is the result of an incomplete fix for CVE-2020-16599. |
|---|
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|
| GNU Binutils: Multiple Vulnerabilities (GLSA 202309-15) — Gentoo security |
GENTOO |
security.gentoo.org |
|
| sourceware.org Git - binutils-gdb.git/commit |
MISC |
sourceware.org |
|
| 29699 – Segmentation fault caused by null pointer dereference in nm-new, _bfd_elf_get_symbol_version_string, elf.c:1969 |
MISC |
sourceware.org |
|
| 2150768 – (CVE-2022-4285) CVE-2022-4285 binutils: NULL pointer dereference in _bfd_elf_get_symbol_version_string leads to segfault |
MISC |
bugzilla.redhat.com |
|
| sourceware.org Git - binutils-gdb.git/commit |
|
sourceware.org |
|
| CVE Program record |
CVE.ORG |
www.cve.org |
canonical |
| NVD vulnerability detail |
NVD |
nvd.nist.gov |
canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 160693 Oracle Enterprise Linux Security Update for gcc-toolset-12-binutils (ELSA-2023-2873)
- 161038 Oracle Enterprise Linux Security Update for binutils (ELSA-2023-6236)
- 161113 Oracle Enterprise Linux Security Update for binutils (ELSA-2023-6593)
- 183849 Debian Security Update for binutils (CVE-2022-4285)
- 199995 Ubuntu Security Notification for GNU binutils Vulnerabilities (USN-6544-1)
- 241474 Red Hat Update for gcc-toolset-12-binutils (RHSA-2023:2873)
- 241553 Red Hat Update for devtoolset-12-binutils (RHSA-2023:3269)
- 242263 Red Hat Update for binutils (RHSA-2023:6236)
- 242321 Red Hat Update for binutils (RHSA-2023:6593)
- 242618 Red Hat Update for binutils (RHSA-2023:7394)
- 283548 Fedora Security Update for insight (FEDORA-2022-07d49bd9a8)
- 283549 Fedora Security Update for insight (FEDORA-2022-3efcae2a46)
- 283598 Fedora Security Update for mingw (FEDORA-2023-11256597a8)
- 283599 Fedora Security Update for mingw (FEDORA-2023-3d9f2bed46)
- 378753 Alibaba Cloud Linux Security Update for gcc-toolset-12-binutils (ALINUX3-SA-2023:0086)
- 672918 EulerOS Security Update for binutils (EulerOS-SA-2023-1755)
- 672947 EulerOS Security Update for binutils (EulerOS-SA-2023-1777)
- 710758 Gentoo Linux GNU Binutils Multiple Vulnerabilities (GLSA 202309-15)
- 754877 SUSE Enterprise Linux Security Update for binutils (SUSE-SU-2023:3695-1)
- 754965 SUSE Enterprise Linux Security Update for binutils (SUSE-SU-2023:3825-1)
- 905320 Common Base Linux Mariner (CBL-Mariner) Security Update for binutils (13112)
- 905322 Common Base Linux Mariner (CBL-Mariner) Security Update for binutils (13114)
- 905611 Common Base Linux Mariner (CBL-Mariner) Security Update for binutils (13114-1)
- 905664 Common Base Linux Mariner (CBL-Mariner) Security Update for binutils (13112-1)
- 906584 Common Base Linux Mariner (CBL-Mariner) Security Update for binutils (13112-3)
- 906615 Common Base Linux Mariner (CBL-Mariner) Security Update for binutils (13114-3)
- 941085 AlmaLinux Security Update for gcc-toolset-12-binutils (ALSA-2023:2873)
- 941338 AlmaLinux Security Update for binutils (ALSA-2023:6236)
- 941367 AlmaLinux Security Update for binutils (ALSA-2023:6593)
- 961068 Rocky Linux Security Update for binutils (RLSA-2023:6236)
