Heap-based Buffer Overflow in GNU Binutils 2.35.1: Threat to System Availability

Heap-based Buffer Overflow in GNU Binutils 2.35.1: Threat to System Availability

CVE-2021-20284 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

A flaw was found in GNU Binutils 2.35.1, where there is a heap-based buffer overflow in _bfd_elf_slurp_secondary_reloc_section in elf.c due to the number of symbols not calculated correctly. The highest threat from this vulnerability is to system availability.

Learn more about our Web Application Penetration Testing UK.