CVE-2020-35493

A flaw exists in binutils in bfd/pef.c. An attacker who is able to submit a crafted PEF file to be parsed by objdump could cause a heap buffer overflow -> out-of-bounds read that could lead to an impact to application availability. This flaw affects binutils versions prior to 2.34.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:gnu:binutils:*:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*

Configuration 3 (hide)

OR cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:solidfire_\&_hci_management_node:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:solidfire\,_enterprise_sds_\&_hci_storage_node:-:*:*:*:*:*:*:*
cpe:2.3:o:broadcom:brocade_fabric_operating_system_firmware:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:netapp:hci_compute_node_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:hci_compute_node:-:*:*:*:*:*:*:*

Information

Published : 2021-01-04 07:15

Updated : 2022-09-02 08:44


NVD link : CVE-2020-35493

Mitre link : CVE-2020-35493


JSON object : View

CWE
CWE-125

Out-of-bounds Read

CWE-122

Heap-based Buffer Overflow

CWE-20

Improper Input Validation

Advertisement

dedicated server usa

Products Affected

netapp

  • cloud_backup
  • hci_compute_node
  • hci_compute_node_firmware
  • solidfire_\&_hci_management_node
  • solidfire\,_enterprise_sds_\&_hci_storage_node
  • ontap_select_deploy_administration_utility

gnu

  • binutils

fedoraproject

  • fedora

broadcom

  • brocade_fabric_operating_system_firmware