CVE-2020-35494 : There's a flaw in binutils /opcodes/tic4x-dis.c. An attacker who is able to submit a crafted input file to be processed

There's a flaw in binutils /opcodes/tic4x-dis.c. An attacker who is able to submit a crafted input file to be processed by binutils could cause usage of uninitialized memory. The highest threat is to application availability with a lower threat to data confidentiality. This flaw affects binutils versions prior to 2.34.

Published 2021-01-04 15:15:13

Updated 2022-09-02 15:44:28

Source Red Hat, Inc.

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2020-35494

Probability of exploitation activity in the next 30 days: 0.13%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 48 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2020-35494

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.8	MEDIUM	AV:N/AC:M/Au:N/C:P/I:N/A:P	8.6	4.9	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: Partial
6.1	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H	1.8	4.2	NIST
Attack Vector: Local Attack Complexity: Low Privileges Required: None User Interaction: Required Scope: Unchanged Confidentiality: Low Integrity: None Availability: High

CWE ids for CVE-2020-35494

CWE-908 Use of Uninitialized Resource

The product uses or accesses a resource that has not been initialized.

Assigned by: secalert@redhat.com (Primary)

References for CVE-2020-35494

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4KOK3QWSVOUJWJ54HVGIFWNLWQ5ZY4S6/

[SECURITY] Fedora 32 Update: mingw-binutils-2.32-9.fc32 - package-announce - Fedora Mailing-Lists
Mailing List;Third Party Advisory

CVEs referencing this url
https://bugzilla.redhat.com/show_bug.cgi?id=1911439

1911439 – (CVE-2020-35494) CVE-2020-35494 binutils: usage of unitialized heap in tic4x_print_cond function in opcodes/tic4x-dis.c
Exploit;Issue Tracking;Patch;Third Party Advisory
https://security.netapp.com/advisory/ntap-20210212-0007/

January 2021 GNU Binutils Vulnerabilities in NetApp Products | NetApp Product Security
Third Party Advisory

CVEs referencing this url
https://security.gentoo.org/glsa/202107-24

Binutils: Multiple vulnerabilities (GLSA 202107-24) — Gentoo security
Third Party Advisory

CVEs referencing this url

Products affected by CVE-2020-35494

GNU » Binutils
Versions before (<) 2.34
cpe:2.3:a:gnu:binutils:*:*:*:*:*:*:*:*
Matching versions
Broadcom » Brocade Fabric Operating System Firmware » Version: N/A
cpe:2.3:o:broadcom:brocade_fabric_operating_system_firmware:-:*:*:*:*:*:*:*
Matching versions
Fedoraproject » Fedora » Version: 32
cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*
Matching versions
Netapp » Cloud Backup » Version: N/A
cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*
Matching versions
Netapp » Ontap Select Deploy Administration Utility » Version: N/A
cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:*:*:*:*:*:*:*
Matching versions
Netapp » Solidfire & Hci Management Node » Version: N/A
cpe:2.3:a:netapp:solidfire_\&_hci_management_node:-:*:*:*:*:*:*:*
Matching versions
Netapp » Hci Compute Node Firmware » Version: N/A
cpe:2.3:o:netapp:hci_compute_node_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Netapp » Hci Compute Node » Version: N/A
Netapp » Solidfire, Enterprise Sds & Hci Storage Node » Version: N/A
cpe:2.3:a:netapp:solidfire\,_enterprise_sds_\&_hci_storage_node:-:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2020-35494

Exploit prediction scoring system (EPSS) score for CVE-2020-35494

CVSS scores for CVE-2020-35494

CWE ids for CVE-2020-35494

References for CVE-2020-35494

Products affected by CVE-2020-35494