CVE-2019-1010180

high
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

GNU gdb All versions is affected by: Buffer Overflow - Out of bound memory access. The impact is: Deny of Service, Memory Disclosure, and Possible Code Execution. The component is: The main gdb module. The attack vector is: Open an ELF for debugging. The fixed version is: Not fixed yet.

References

https://sourceware.org/bugzilla/show_bug.cgi?id=23657

http://www.securityfocus.com/bid/109367

http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00072.html

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00008.html

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00029.html

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00028.html

https://security.gentoo.org/glsa/202003-31

Details

Source: MITRE

Published: 2019-07-24

Updated: 2021-07-21

Type: CWE-119

Risk Information

CVSS v2

Base Score: 6.8

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 8.6

Severity: MEDIUM

CVSS v3

Base Score: 7.8

Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 1.8

Severity: HIGH

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:gnu:gdb:*:*:*:*:*:*:*:*

Configuration 2

OR

cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*

cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*

Tenable Plugins

View all (22 total)

IDNameProductFamilySeverity
153333EulerOS 2.0 SP2 : binutils (EulerOS-SA-2021-2355)NessusHuawei Local Security Checks
high
146008CentOS 8 : gdb (CESA-2020:1635)NessusCentOS Local Security Checks
high
140839EulerOS 2.0 SP3 : binutils (EulerOS-SA-2020-2072)NessusHuawei Local Security Checks
high
136058RHEL 8 : gdb (RHSA-2020:1635)NessusRed Hat Local Security Checks
high
135628EulerOS Virtualization 3.0.2.2 : binutils (EulerOS-SA-2020-1466)NessusHuawei Local Security Checks
critical
135484Photon OS 1.0: Gdb PHSA-2020-1.0-0287NessusPhotonOS Local Security Checks
high
135303Photon OS 2.0: Gdb PHSA-2020-2.0-0225NessusPhotonOS Local Security Checks
high
134608GLSA-202003-31 : gdb: Buffer overflowNessusGentoo Local Security Checks
high
133895EulerOS 2.0 SP5 : binutils (EulerOS-SA-2020-1094)NessusHuawei Local Security Checks
high
132828EulerOS Virtualization for ARM 64 3.0.5.0 : binutils (EulerOS-SA-2020-1074)NessusHuawei Local Security Checks
high
130940openSUSE Security Update : gdb (openSUSE-2019-2494)NessusSuSE Local Security Checks
high
130939openSUSE Security Update : gdb (openSUSE-2019-2493)NessusSuSE Local Security Checks
high
130808EulerOS 2.0 SP8 : binutils (EulerOS-SA-2019-2099)NessusHuawei Local Security Checks
high
130755SUSE SLED12 / SLES12 Security Update : gdb (SUSE-SU-2019:2916-1)NessusSuSE Local Security Checks
high
130753SUSE SLES12 Security Update : gdb (SUSE-SU-2019:2914-1)NessusSuSE Local Security Checks
high
130752SUSE SLED15 / SLES15 Security Update : gdb (SUSE-SU-2019:2913-1)NessusSuSE Local Security Checks
high
130620SUSE SLED15 / SLES15 Security Update : gdb (SUSE-SU-2019:2902-1)NessusSuSE Local Security Checks
high
130576openSUSE Security Update : binutils (openSUSE-2019-2432)NessusSuSE Local Security Checks
high
130420openSUSE Security Update : binutils (openSUSE-2019-2415)NessusSuSE Local Security Checks
high
130340SUSE SLED15 / SLES15 Security Update : binutils (SUSE-SU-2019:2780-1)NessusSuSE Local Security Checks
high
130257SUSE SLED15 / SLES15 Security Update : binutils (SUSE-SU-2019:2779-1)NessusSuSE Local Security Checks
high
129879SUSE SLED12 / SLES12 Security Update : binutils (SUSE-SU-2019:2650-1)NessusSuSE Local Security Checks
high