CVE-2021-20284

A flaw was found in GNU Binutils 2.35.1, where there is a heap-based buffer overflow in _bfd_elf_slurp_secondary_reloc_section in elf.c due to the number of symbols not calculated correctly. The highest threat from this vulnerability is to system availability.
References
Link Resource
https://bugzilla.redhat.com/show_bug.cgi?id=1937784 Exploit Issue Tracking Third Party Advisory
https://security.gentoo.org/glsa/202208-30 Third Party Advisory
https://security.netapp.com/advisory/ntap-20210521-0010/ Third Party Advisory
https://sourceware.org/bugzilla/show_bug.cgi?id=26931 Exploit Issue Tracking Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:gnu:binutils:2.35.1:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:*:*:*:*:*:*:*

History

15 Aug 2022, 11:15

Type Values Removed Values Added
References
  • (GENTOO) https://security.gentoo.org/glsa/202208-30 -

22 Jul 2022, 12:06

Type Values Removed Values Added
CPE cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:*:*:*:*:*:*:*
References (CONFIRM) https://security.netapp.com/advisory/ntap-20210521-0010/ - (CONFIRM) https://security.netapp.com/advisory/ntap-20210521-0010/ - Third Party Advisory

21 May 2021, 09:15

Type Values Removed Values Added
References
  • (CONFIRM) https://security.netapp.com/advisory/ntap-20210521-0010/ -

Information

Published : 2021-03-26 17:15

Updated : 2024-02-04 21:47


NVD link : CVE-2021-20284

Mitre link : CVE-2021-20284

CVE.ORG link : CVE-2021-20284


JSON object : View

Products Affected

netapp

  • ontap_select_deploy_administration_utility
  • cloud_backup

gnu

  • binutils
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE-787

Out-of-bounds Write