Uninitialized Variable Vulnerability in Binutils' bfd_init_section_decompress_status Function

Uninitialized Variable Vulnerability in Binutils' bfd_init_section_decompress_status Function

CVE-2023-25586 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

A flaw was found in Binutils. A logic fail in the bfd_init_section_decompress_status function may lead to the use of an uninitialized variable that can cause a crash and local denial of service.

Learn more about our Web Application Penetration Testing UK.