CVE-2022-38128

Name
CVE-2022-38128
Description
An infinite loop may be triggered in display_debug_abbrev() function in binutils/dwarf.c while opening a crafted ELF, which may lead to denial of service by a local attacker.
NVD Severity
medium
Other trackers
Mailing lists
Exploits
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
MISC https://sourceware.org/bugzilla/show_bug.cgi?id=29370

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:gnu:binutils:2.39:*:*:*:*:*:*:* binutils == None == 2.39

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
binutils edge-main 2.39-r2 Ariadne Conill <ariadne@dereferenced.org> possibly vulnerable