QwikSec

Security Database

CVE

CWE

Training

CVE-2021-20294

Published: Apr 29, 2021

Modified: Aug 3, 2024

PUBLISHED

Description

A flaw was found in binutils readelf 2.35 program. An attacker who is able to convince a victim using readelf to read a crafted file could trigger a stack buffer overflow, out-of-bounds write of arbitrary data supplied by the attacker. The highest impact of this flaw is to confidentiality, integrity, and availability.

Vendor	Product	Versions
n/a	binutils	affected `binutils 2.35.2`

Weaknesses (CWE)

References

https://bugzilla.redhat.com/show_bug.cgi?id=1943533

https://sourceware.org/bugzilla/show_bug.cgi?id=26929

[bookkeeper-issues] 20210628 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8

mailing-list

[bookkeeper-issues] 20210629 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8

mailing-list

vendor-advisory

https://sourceware.org/git/?p=binutils-gdb.git%3Ba=patch%3Bh=372dd157272e0674d13372655cc60eaca9c06926

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.