CVE-2022-48065

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Aug 22, 2023
Updated: Nov 15, 2023
CWE ID 401

Summary

CVE-2022-48065 is a memory leak vulnerability affecting GNU Binutils before version 2.40. The issue resides in the function "find_abstract_instance" within the file "dwarf2.c". This flaw can result in the allocation of memory without proper deallocation, leading to a potential denial of service or even arbitrary code execution if an attacker is able to manipulate the affected system to exhaust its memory resources. System administrators and developers are advised to update to the latest version of GNU Binutils to mitigate this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Gnu Binutils
  • Fedora Operating System

Affected Vendors

  • Fedora Project