Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2023-25586HistorySep 14, 2023 - 9:15 p.m.
CVE-2023-25586
2023-09-1421:15:10
Debian Security Bug Tracker
security-tracker.debian.org
8
binutils
logic fail
bfd_init_section_decompress_status
uninitialized variable
crash
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.0004 Low
EPSS
Percentile
10.3%
A flaw was found in Binutils. A logic fail in the bfd_init_section_decompress_status function may lead to the use of an uninitialized variable that can cause a crash and local denial of service.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | binutils | < 2.39.50.20221208-1 | binutils_2.39.50.20221208-1_all.deb |
| Debian | 11 | all | binutils | <= 2.35.2-2 | binutils_2.35.2-2_all.deb |
| Debian | 999 | all | binutils | < 2.39.50.20221208-1 | binutils_2.39.50.20221208-1_all.deb |
| Debian | 13 | all | binutils | < 2.39.50.20221208-1 | binutils_2.39.50.20221208-1_all.deb |
Related
osv
osv
CVE-2023-25586
2023-09-14 21:15:10
cvelist
cvelist
cve
cve
CVE-2023-25586
2023-09-14 21:15:10
alpinelinux
alpinelinux
CVE-2023-25586
2023-09-14 21:15:10
prion
prion
Denial of service
2023-09-14 21:15:00
veracode
veracode
Denial Of Service (DoS)
2023-10-09 13:17:39
redhatcve
redhatcve
CVE-2023-25586
2023-02-07 19:27:23
ubuntucve
ubuntucve
CVE-2023-25586
2023-09-14 00:00:00
nvd
nvd
CVE-2023-25586
2023-09-14 21:15:10
cloudfoundry
cloudfoundry
USN-6101-1: GNU binutils vulnerabilities | Cloud Foundry
2023-06-30 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2023-5.0-0060
2023-07-29 00:00:00
Critical Photon OS Security Update - PHSA-2023-4.0-0440
2023-07-29 00:00:00
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.0004 Low
EPSS
Percentile
10.3%
Related for DEBIANCVE:CVE-2023-25586