First published: Tue Aug 22 2023(Updated: )
An issue was discovered in GNU Binutils 2.34. It is a memory leak when process microblaze-dis.c. This one will consume memory on each insn disassembled.
Credit: cve@mitre.org cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
GNU Binutils | <2.34 | |
debian/binutils | 2.35.2-2 2.40-2 2.43.50.20241215-1 2.43.50.20241221-1 |
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=378fd436405b3051df34ac995b2e03fe1f3d1907
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-21490 is a vulnerability in GNU Binutils 2.34 that causes a memory leak when processing microblaze-dis.c.
The severity of CVE-2020-21490 is medium (CVSS score: 5.5).
CVE-2020-21490 affects GNU Binutils version 2.34 and can cause memory consumption on each instruction disassembled.
Yes, the fix for CVE-2020-21490 is to upgrade GNU Binutils to version 2.35.2 or higher.
More information about CVE-2020-21490 can be found at the following references: [1] [2] [3].