CVE-2022-48065
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Published Aug 22, 2023
Updated: Nov 15, 2023
CWE ID 401
Summary
CVE-2022-48065 is a memory leak vulnerability affecting GNU Binutils before version 2.40. The issue resides in the function "find_abstract_instance" within the file "dwarf2.c". This flaw can result in the allocation of memory without proper deallocation, leading to a potential denial of service or even arbitrary code execution if an attacker is able to manipulate the affected system to exhaust its memory resources. System administrators and developers are advised to update to the latest version of GNU Binutils to mitigate this vulnerability.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Gnu Binutils
- Fedora Operating System
Affected Vendors
- Fedora Project