VDB
CVE-2022-38128
CVE-2022-38128
PUBLISHED
Es existiert eine Schwachstelle in binutils aufgrund einer Endlosschleife in der Funktion "display_debug_abbrev()". Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um einen Denial of Service Zustand herbeizuführen.
EPSS 0.04% · 5.1th percentile
Risk Scores
EPSS Score
0.04%
5.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| SUSE | SUSE Linux | |
| Gentoo | Gentoo Linux | |
| Open Source | Open Source binutils |
Timeline
- Aug 30, 2022 CVE Published
- Sep 2, 2022 EPSS Score
- Sep 5, 2022 EPSS Score
- Sep 9, 2022 EPSS Score
- Sep 12, 2022 EPSS Score
- Sep 16, 2022 EPSS Score
- Sep 19, 2022 EPSS Score
- Sep 23, 2022 EPSS Score
- Sep 26, 2022 EPSS Score
- Sep 30, 2022 EPSS Score
- Oct 3, 2022 EPSS Score
- Oct 6, 2022 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-1237.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-1237 advisory
- https://security.gentoo.org/glsa/202309-15 advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2122668 advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2122662 advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2122674 advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-November/013047.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-November/013145.html advisory