OSV-2023-1320

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/binutils/OSV-2023-1320.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2023-1320
Published
2023-12-17T00:12:41.223755Z
Modified
2023-12-17T00:12:41.224161Z
Summary
Heap-use-after-free in memory_bstat
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=65108

Crash type: Heap-use-after-free READ 8
Crash state:
memory_bstat
bfd_get_size
bfd_get_file_size
References

Affected packages

OSS-Fuzz / binutils

Package

Name
binutils
Purl
pkg:generic/binutils

Affected ranges

Type
GIT
Repo
git://sourceware.org/git/binutils-gdb.git
Events
Introduced
4ace84a15ca943f52e590c264d82dfba350482e3
Fixed
06f05f35856b37bc6db014d0921638932dd5a97a
Fixed
cf86e13d8bfc2924746b8e45299aed103d090985

Ecosystem specific 

{
    "severity": "HIGH"
}

Database specific 

{
    "fixed_range": "b3fa92f12a83d284db3124e0992e15d1ff31a3d8:06f05f35856b37bc6db014d0921638932dd5a97a"
}