6.5 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
10.2%
GNU Binutils before 2.40 was discovered to contain an excessive memory consumption vulnerability via the function load_separate_debug_files at dwarf2.c. The attacker could supply a crafted ELF file and cause a DNS attack.
security.netapp.com/advisory/ntap-20231006-0008/
sourceware.org/bugzilla/show_bug.cgi?id=29924
sourceware.org/git/gitweb.cgi?p=binutils-gdb.git%3Bh=75393a2d54bcc40053e5262a3de9d70c5ebfbbfd