Bug 2233958 (CVE-2022-48064)

Summary: CVE-2022-48064 binutils: excessive memory consumption in _bfd_dwarf2_find_nearest_line_with_alt() in dwarf2.c
Product: [Other] Security Response Reporter: Guilherme de Almeida Suckevicz <gsuckevi>
Component: vulnerabilityAssignee: Product Security <prodsec-ir-bot>
Status: CLOSED NOTABUG QA Contact:
Severity: low Docs Contact:
Priority: low    
Version: unspecifiedCC: acrosby, ailan, bdettelb, caswilli, desktop-qa-list, fjansen, fweimer, gdb-bugs, hkataria, jburrell, jmitchel, jsamir, jsherril, jtanner, kaycoth, keiths, kshier, mcermak, mpolacek, mprchlik, nickc, ohudlick, psegedy, rjones, sipoyare, sthirugn, tsasak, virt-maint, vkrizan
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
An excessive memory consumption vulnerability was identified in GNU Binutils, specifically in the function bfd_dwarf2_find_nearest_line_with_alt at dwarf2.c. An attacker could exploit this by providing a crafted ELF file, potentially leading to a denial of service attack through excessive memory usage.
 Story Points: ---
Clone Of: Environment:
Last Closed: 2023-11-09 09:15:46 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 2233960, 2233961, 2233962, 2234104, 2234105, 2234106, 2234107, 2234108, 2234109, 2234110, 2234111, 2234112, 2234113, 2234114, 2234116, 2234117, 2234118, 2234119    
Bug Blocks: 2233947    

Description Guilherme de Almeida Suckevicz 2023-08-23 19:54:21 UTC 
GNU Binutils before 2.40 was discovered to contain an excessive memory consumption vulnerability via the function bfd_dwarf2_find_nearest_line_with_alt at dwarf2.c. The attacker could supply a crafted ELF file and cause a DNS attack.

References:
https://sourceware.org/bugzilla/show_bug.cgi?id=29922
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=8f2c64de86bc3d7556121fe296dd679000283931
Comment 1 Guilherme de Almeida Suckevicz 2023-08-23 19:56:16 UTC 
Created binutils tracking bugs for this issue:

Affects: fedora-all [bug 2233960]


Created gdb tracking bugs for this issue:

Affects: fedora-all [bug 2233961]


Created mingw-binutils tracking bugs for this issue:

Affects: fedora-all [bug 2233962]
Comment 4 Nick Clifton 2023-08-24 11:52:42 UTC 
(In reply to Guilherme de Almeida Suckevicz from comment #0)
> GNU Binutils before 2.40 was discovered to contain an excessive memory
> consumption vulnerability via the function
> bfd_dwarf2_find_nearest_line_with_alt at dwarf2.c. The attacker could supply
> a crafted ELF file and cause a DNS attack.
 
The SECURITY.txt file found in the upstream GNU Binutils sources makes it clear that bug in inspection tools like nm are not considered to be security issues, and hence do not qualify for CVE treatment.