{"id":"MGASA-2022-0425","summary":"Updated binutils/gdb packages fix security vulnerability","details":"libiberty: Heap/stack buffer overflow in the dlang_lname function in\nd-demangle.c (CVE-2021-3826)\nbinutils: heap-based buffer overflow in bfd_getl32() when called by\nstrip_main() in objcopy.c via a crafted file (CVE-2022-38533)\n","modified":"2026-02-02T14:40:12.890321Z","published":"2022-11-13T02:25:20Z","related":["CVE-2021-3826","CVE-2022-38533"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2022-0425.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=31092"},{"type":"REPORT","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/6AKZ2DTS3ATVN5PANNVLKLE5OP4OF25Q/"},{"type":"REPORT","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/4MYLS3VR4OPL5ECRWOR4ZHMGXUSCJFZY/"}],"affected":[{"package":{"name":"binutils","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/binutils?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.36.1-1.5.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2022-0425.json"}},{"package":{"name":"gdb","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/gdb?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10.1-5.1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2022-0425.json"}}],"schema_version":"1.7.3","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}