What the vulnerability does

01Description

A flaw exists in binutils in bfd/pef.c. An attacker who is able to submit a crafted PEF file to be parsed by objdump could cause a heap buffer overflow -> out-of-bounds read that could lead to an impact to application availability. This flaw affects binutils versions prior to 2.34.

Key dates

02Disclosure timeline

January 4, 2021 CVE published
August 4, 2024 Record updated