Back to bug 1911444
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Guilherme de Almeida Suckevicz | 2020-12-29 13:39:26 UTC | Depends On | 1911445 | |
| Guilherme de Almeida Suckevicz | 2020-12-29 13:44:29 UTC | Blocks | 1911446 | |
| Guilherme de Almeida Suckevicz | 2020-12-29 13:46:50 UTC | Blocks | 1908372 | |
| Guilherme de Almeida Suckevicz | 2020-12-30 17:14:59 UTC | Comment | 0 | updated |
| Guilherme de Almeida Suckevicz | 2020-12-30 17:15:06 UTC | Summary | CVE-2020-35496 binutils: multiple NULL pointer dereferences in bfd module due to not checking return value of bfd_malloc | CVE-2020-35496 binutils: NULL pointer dereference in bfd_pef_scan_start_address function in bfd/pef.c |
| Guilherme de Almeida Suckevicz | 2020-12-30 17:20:31 UTC | Comment | 0 | updated |
| Todd Cullum | 2020-12-30 20:19:52 UTC | Fixed In Version | binutils 2.34 | |
| Todd Cullum | 2020-12-30 20:23:20 UTC | Depends On | 1911712, 1911711, 1911713, 1911714 | |
| Todd Cullum | 2020-12-30 20:26:02 UTC | Doc Text | There's a flaw in bfd_pef_scan_start_address() of bfd/pef.c in binutils which could allow an attacker who is able to submit a crafted file to be processed by objdump to cause a NULL pointer dereference. The greatest threat of this flaw is to application availability. | |
| Todd Cullum | 2020-12-30 20:32:52 UTC | Comment | 5 | updated |
| Eduardo Lima (Etrunko) | 2021-02-01 14:35:47 UTC | CC | elima | |
| Martin Prpič | 2021-02-04 19:53:20 UTC | Comment 3 is private | 1 | 0 |
| Red Hat Bugzilla | 2021-02-16 02:43:14 UTC | CC | aoliva | |
| Red Hat Bugzilla | 2021-02-16 02:45:54 UTC | CC | ktietz | |
| Eric Christensen | 2021-02-23 16:19:45 UTC | Doc Text | There's a flaw in bfd_pef_scan_start_address() of bfd/pef.c in binutils which could allow an attacker who is able to submit a crafted file to be processed by objdump to cause a NULL pointer dereference. The greatest threat of this flaw is to application availability. | A flaw was found in bfd_pef_scan_start_address() of bfd/pef.c in binutils which could allow an attacker who is able to submit a crafted file to be processed by objdump to cause a NULL pointer dereference. The greatest threat of this flaw is to application availability. |
| Red Hat Bugzilla | 2021-03-16 12:49:06 UTC | CC | law | |
| Red Hat Bugzilla | 2021-11-14 22:29:35 UTC | CC | fidencio | |
| Red Hat Bugzilla | 2023-07-07 08:30:49 UTC | Assignee | security-response-team | nobody |
| Carlos O'Donell | 2023-07-09 12:57:33 UTC | CC | mnewsome |
Back to bug 1911444