Vulnerabilities > CVE-2020-16592 - Use After Free vulnerability in multiple products

047910
CVSS 5.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
gnu
netapp
fedoraproject
CWE-416

Summary

A use after free issue exists in the Binary File Descriptor (BFD) library (aka libbfd) in GNU Binutils 2.34 in bfd_hash_lookup, as demonstrated in nm-new, that can cause a denial of service via a crafted file.

Vulnerable Configurations

Part Description Count
Application
Gnu
1
Application
Netapp
1
OS
Fedoraproject
2

Common Weakness Enumeration (CWE)