CVE-2022-48064

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Aug 22, 2023

Updated: Nov 7, 2023

CWE ID 770

Summary

CVE-2022-48064 is a memory consumption vulnerability affecting GNU Binutils versions prior to 2.40. The issue lies within the function bfd_dwarf2_find_nearest_line_with_alt in dwarf2.c. An attacker can exploit this vulnerability by supplying a specially crafted ELF file, leading to excessive memory consumption. This condition may result in denial-of-service attacks, specifically DNS attacks, if successfully exploited.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Gnu Binutils
Fedora Operating System

Affected Vendors

Fedora Project

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sbEj-s
https://www.cve.org/CVERecord?id=CVE-2022-48064
https://nvd.nist.gov/vuln/detail/CVE-2022-48064

Back to Vulnerability Database