Vulnerability Details CVE-2023-25586
A flaw was found in Binutils. A logic fail in the bfd_init_section_decompress_status function may lead to the use of an uninitialized variable that can cause a crash and local denial of service.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 3.9%
CVSS Severity
CVSS v3 Score 4.7
References
- https://access.redhat.com/security/cve/CVE-2023-25586
- https://bugzilla.redhat.com/show_bug.cgi?id=2167502
- https://security.netapp.com/advisory/ntap-20231103-0003/
- https://sourceware.org/bugzilla/show_bug.cgi?id=29855
- https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=5830876a0cca17bef3b2d54908928e72cca53502
- https://access.redhat.com/security/cve/CVE-2023-25586
- https://bugzilla.redhat.com/show_bug.cgi?id=2167502
- https://security.netapp.com/advisory/ntap-20231103-0003/
- https://sourceware.org/bugzilla/show_bug.cgi?id=29855
- https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=5830876a0cca17bef3b2d54908928e72cca53502