The demangle_template function in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.31.1, contains an integer overflow vulnerability (for "Create an array for saving the template argument values") that can trigger a heap-based buffer overflow, as demonstrated by nm.
-
| Package | Type | OS Name | OS Version | Affected Ranges | Fix Versions |
|---|---|---|---|---|---|
| debian/binutils | deb | debian | 12 | >=2.40-2 | Not yet available |
| debian/binutils | deb | debian | 13 | >=2.42-4 | Not yet available |
| debian/binutils | deb | debian | 11 | >=2.35.2-2 | Not yet available |
| debian/binutils | deb | debian | 10 | >=2.31.1-16 | Not yet available |
| debian/binutils | deb | debian | unstable | >=2.42-4 | Not yet available |
Severity and metrics
No CVSS data available from this source.
1.8
-
-
-
-
-