Heap-buffer-overflow in bfd_getl32 function in GNU Binutils before 2.40

Heap-buffer-overflow in bfd_getl32 function in GNU Binutils before 2.40

CVE-2022-38533 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

In GNU Binutils before 2.40, there is a heap-buffer-overflow in the error function bfd_getl32 when called from the strip_main function in strip-new via a crafted file.

Learn more about our Web Application Penetration Testing UK.