What the vulnerability does

01Description

A flaw was found in binutils readelf 2.35 program. An attacker who is able to convince a victim using readelf to read a crafted file could trigger a stack buffer overflow, out-of-bounds write of arbitrary data supplied by the attacker. The highest impact of this flaw is to confidentiality, integrity, and availability.

Key dates

02Disclosure timeline

April 29, 2021 CVE published
August 3, 2024 Record updated