GNU Binutils <2.40: load_separate_debug_files Memory Exhaustion via crafted ELF
CVE-2022-48063 Published on August 22, 2023

GNU Binutils before 2.40 was discovered to contain an excessive memory consumption vulnerability via the function load_separate_debug_files at dwarf2.c. The attacker could supply a crafted ELF file and cause a DNS attack.

NVD

Products Associated with CVE-2022-48063

stack.watch emails you whenever new vulnerabilities are published in GNU Binutils or Canonical Ubuntu Linux. Just hit a watch button to start following.

GNU Binutils

Canonical Ubuntu Linux

Exploit Probability

EPSS

0.01%

Percentile

2.87%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

GNU Binutils <2.40: load_separate_debug_files Memory Exhaustion via crafted ELFCVE-2022-48063 Published on August 22, 2023

Products Associated with CVE-2022-48063

Exploit Probability

GNU Binutils <2.40: load_separate_debug_files Memory Exhaustion via crafted ELF
CVE-2022-48063 Published on August 22, 2023