Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
605
VMScore

CVE-2021-20294

Published: 29/04/2021 Updated: 07/11/2023
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
VMScore: 605
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Subscribe to Gnu

Vulnerability Summary

An issue exists in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.35.1. A heap-based buffer over-read can occur in bfd_getl_signed_32 in libbfd.c because sh_entsize is not validated in _bfd_elf_slurp_secondary_reloc_section in elf.c. (CVE-2020-35448) A flaw was found in binutils' readelf program. An attacker who is able to convince a victim using readelf to read a crafted file, could trigger a stack buffer overflow, out-of-bounds write of arbitrary data supplied by the attacker. The highest impact of this flaw is to confidentiality, integrity, and availability. (CVE-2021-20294) There's a flaw in the BFD library of binutils. An attacker who supplies a crafted file to an application linked with BFD, and using the DWARF functionality, could cause an impact to system availability by way of excessive memory consumption. (CVE-2021-3487)

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

gnu binutils

Vendor Advisories

Amazon Linux 2: ALAS2-2021-1702
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2351 A heap-based buffer over-read can occur in bfd_getl_signed_32 in libbfdc because sh_entsize is not validated in _bfd_elf_slurp_secondary_reloc_section in elfc (CVE-2020-35448) A flaw was found in binutils' readelf program An ...
Arch Linux Issues:
A security issue was found in binutils before version 236 It allows attackers to cause a denial of service (stack buffer overflow) or possibly have unspecified other impacts via a crafted ELF file ...

Github Repositories

https://github.com/tin-z/CVE-2021-20294-POC

Simple CVE-2021-20294 poc

CVE-2021-20294-POC Jan 21 2023, Altin (tin-z), githubcom/tin-z Poc download and compile wget ftpgnuorg/gnu/binutils/binutils-235targz && tar -xzvf binutils-235targz cd binutils-235 && /configure && make && cd gcc -shared -fPIC pocc -o pocso -Wl,--version-script=pocver

References

CWE-787https://bugzilla.redhat.com/show_bug.cgi?id=1943533https://sourceware.org/bugzilla/show_bug.cgi?id=26929https://security.gentoo.org/glsa/202208-30https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3Ehttps://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3Ehttps://sourceware.org/git/?p=binutils-gdb.git%3Ba=patch%3Bh=372dd157272e0674d13372655cc60eaca9c06926https://nvd.nist.govhttps://github.com/tin-z/CVE-2021-20294-POChttps://alas.aws.amazon.com/AL2/ALAS-2021-1702.html
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
client sideCVE-2023-31889template injectionCVE-2024-4304CVE-2006-4304CVE-2024-33272type confusionCVE-2024-21345CVE-2024-33271
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook