Vulnerability Details CVE-2019-9072
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an attempted excessive memory allocation in setup_group in elf.c.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 50.8%
CVSS Severity
CVSS v3 Score 5.5
CVSS v2 Score 4.3
References
- https://gcc.gnu.org/bugzilla/show_bug.cgi?id=89396
- https://security.gentoo.org/glsa/202107-24
- https://security.netapp.com/advisory/ntap-20190314-0003/
- https://sourceware.org/bugzilla/show_bug.cgi?id=24232
- https://sourceware.org/bugzilla/show_bug.cgi?id=24237
- https://support.f5.com/csp/article/K12541829
- https://gcc.gnu.org/bugzilla/show_bug.cgi?id=89396
- https://security.gentoo.org/glsa/202107-24
- https://security.netapp.com/advisory/ntap-20190314-0003/
- https://sourceware.org/bugzilla/show_bug.cgi?id=24232
- https://sourceware.org/bugzilla/show_bug.cgi?id=24237
- https://support.f5.com/csp/article/K12541829