Synopsis:
gdb security updateSummary:
An update for gdb is now available for openEuler-22.03-LTS-SP3Description:
GDB, the GNU Project debugger, allows you to see what is going on inside another program while it executes -- or what another program was doing at the moment it crashed.
Security Fix(es):
GNU Binutils before 2.40 was discovered to contain an excessive memory consumption vulnerability via the function bfd_dwarf2_find_nearest_line_with_alt at dwarf2.c. The attacker could supply a crafted ELF file and cause a DNS attack.(CVE-2022-48064)Topic:
An update for gdb is now available for openEuler-22.03-LTS-SP3.
openEuler Security has rated this update as having a security impact of medium. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section.Severity:
MediumAffected Component:
gdb
11.1-10.oe2203sp311.1-10.oe2203sp311.1-10.oe2203sp311.1-10.oe2203sp311.1-10.oe2203sp311.1-10.oe2203sp3Exploitability
AV:LAC:LPR:NUI:RScope
S:UImpact
C:NI:NA:H5.5/CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H