CLSA-2023-1701293664

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2023-1701293664.json
JSON Data
https://api.test.osv.dev/v1/vulns/CLSA-2023-1701293664
Upstream
Published
2023-11-29T21:34:28Z
Modified
2026-05-27T11:33:54.255350339Z
Summary
binutils: Fix of 7 CVEs
Details
  • CVE-2021-45078: Fix out-of-bounds write in stabxcoffbuiltin_type
  • CVE-2021-46174: Fix buffer overflow in readsectionstabsdebugginginfo
  • CVE-2022-44840: Fix possible heap buffer overflow in findsectionin_set() in readelf.c
  • CVE-2022-45703: Combine sanity checks, calculate element counts, not word counts, fix typo
  • CVE-2022-47695: Test symbol flags to exclude section and synthetic symbols before attempting to check flavour
  • CVE-2022-47696: Fix uninitialised field the_bfd of asymbol
  • CVE-2022-47673: Fix lack of bounds checking in vms-alpha.c
References

Affected packages

TuxCare:AlmaLinux:9.2
binutils

Package

Name
binutils
Purl
pkg:rpm/tuxcare/binutils?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.35.2-37.el9.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2023-1701293664.json"
binutils-devel

Package

Name
binutils-devel
Purl
pkg:rpm/tuxcare/binutils-devel?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.35.2-37.el9.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2023-1701293664.json"
binutils-gold

Package

Name
binutils-gold
Purl
pkg:rpm/tuxcare/binutils-gold?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.35.2-37.el9.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2023-1701293664.json"
cross-binutils-aarch64

Package

Name
cross-binutils-aarch64
Purl
pkg:rpm/tuxcare/cross-binutils-aarch64?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.35.2-37.el9.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2023-1701293664.json"
cross-binutils-ppc64le

Package

Name
cross-binutils-ppc64le
Purl
pkg:rpm/tuxcare/cross-binutils-ppc64le?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.35.2-37.el9.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2023-1701293664.json"
cross-binutils-s390x

Package

Name
cross-binutils-s390x
Purl
pkg:rpm/tuxcare/cross-binutils-s390x?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.35.2-37.el9.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2023-1701293664.json"