Vulnerability from csaf_suse
Published
2022-03-22 10:21
Modified
2022-03-22 10:21
Summary
Security update for binutils
Notes
Title of the patch
Security update for binutils
Description of the patch
This update for binutils fixes the following issues:
- For compatibility on old code stream that expect 'brcl 0,label' to
not be disassembled as 'jgnop label' on s390x. (bsc#1192267)
This reverts IBM zSeries HLASM support for now.
- Fixed that ppc64 optflags did not enable LTO (bsc#1188941).
- Fix empty man-pages from broken release tarball
- Fixed a memory corruption with rpath option (bsc#1191473).
- Fixed slow performance of stripping some binaries (bsc#1183909).
Update to binutils 2.37:
* The GNU Binutils sources now requires a C99 compiler and library to
build.
* Support for Realm Management Extension (RME) for AArch64 has been
added.
* A new linker option '-z report-relative-reloc' for x86 ELF targets
has been added to report dynamic relative relocations.
* A new linker option '-z start-stop-gc' has been added to disable
special treatment of __start_*/__stop_* references when
--gc-sections.
* A new linker options '-Bno-symbolic' has been added which will
cancel the '-Bsymbolic' and '-Bsymbolic-functions' options.
* The readelf tool has a new command line option which can be used to
specify how the numeric values of symbols are reported.
--sym-base=0|8|10|16 tells readelf to display the values in base 8,
base 10 or base 16. A sym base of 0 represents the default action
of displaying values under 10000 in base 10 and values above that in
base 16.
* A new format has been added to the nm program. Specifying
'--format=just-symbols' (or just using -j) will tell the program to
only display symbol names and nothing else.
* A new command line option '--keep-section-symbols' has been added to
objcopy and strip. This stops the removal of unused section symbols
when the file is copied. Removing these symbols saves space, but
sometimes they are needed by other tools.
* The '--weaken', '--weaken-symbol' and '--weaken-symbols' options
supported by objcopy now make undefined symbols weak on targets that
support weak symbols.
* Readelf and objdump can now display and use the contents of .debug_sup
sections.
* Readelf and objdump will now follow links to separate debug info
files by default. This behaviour can be stopped via the use of the
new '-wN' or '--debug-dump=no-follow-links' options for readelf and
the '-WN' or '--dwarf=no-follow-links' options for objdump. Also
the old behaviour can be restored by the use of the
'--enable-follow-debug-links=no' configure time option.
The semantics of the =follow-links option have also been slightly
changed. When enabled, the option allows for the loading of symbol
tables and string tables from the separate files which can be used
to enhance the information displayed when dumping other sections,
but it does not automatically imply that information from the
separate files should be displayed.
If other debug section display options are also enabled (eg
'--debug-dump=info') then the contents of matching sections in both
the main file and the separate debuginfo file *will* be displayed.
This is because in most cases the debug section will only be present
in one of the files.
If however non-debug section display options are enabled (eg
'--sections') then the contents of matching parts of the separate
debuginfo file will *not* be displayed. This is because in most
cases the user probably only wanted to load the symbol information
from the separate debuginfo file. In order to change this behaviour
a new command line option --process-links can be used. This will
allow di0pslay options to applied to both the main file and any
separate debuginfo files.
* Nm has a new command line option: '--quiet'. This suppresses 'no
symbols' diagnostic.
Update to binutils 2.36:
New features in the Assembler:
- General:
* When setting the link order attribute of ELF sections, it is now
possible to use a numeric section index instead of symbol name.
* Added a .nop directive to generate a single no-op instruction in
a target neutral manner. This instruction does have an effect on
DWARF line number generation, if that is active.
* Removed --reduce-memory-overheads and --hash-size as gas now
uses hash tables that can be expand and shrink automatically.
- X86/x86_64:
* Add support for AVX VNNI, HRESET, UINTR, TDX, AMX and Key
Locker instructions.
* Support non-absolute segment values for lcall and ljmp.
* Add {disp16} pseudo prefix to x86 assembler.
* Configure with --enable-x86-used-note by default for Linux/x86.
- ARM/AArch64:
* Add support for Cortex-A78, Cortex-A78AE and Cortex-X1,
Cortex-R82, Neoverse V1, and Neoverse N2 cores.
* Add support for ETMv4 (Embedded Trace Macrocell), ETE (Embedded
Trace Extension), TRBE (Trace Buffer Extension), CSRE (Call
Stack Recorder Extension) and BRBE (Branch Record Buffer
Extension) system registers.
* Add support for Armv8-R and Armv8.7-A ISA extensions.
* Add support for DSB memory nXS barrier, WFET and WFIT
instruction for Armv8.7.
* Add support for +csre feature for -march. Add CSR PDEC
instruction for CSRE feature in AArch64.
* Add support for +flagm feature for -march in Armv8.4 AArch64.
* Add support for +ls64 feature for -march in Armv8.7
AArch64. Add atomic 64-byte load/store instructions for this
feature.
* Add support for +pauth (Pointer Authentication) feature for
-march in AArch64.
New features in the Linker:
* Add --error-handling-script=<NAME> command line option to allow
a helper script to be invoked when an undefined symbol or a
missing library is encountered. This option can be suppressed
via the configure time switch: --enable-error-handling-script=no.
* Add -z x86-64-{baseline|v[234]} to the x86 ELF linker to mark
x86-64-{baseline|v[234]} ISA level as needed.
* Add -z unique-symbol to avoid duplicated local symbol names.
* The creation of PE format DLLs now defaults to using a more
secure set of DLL characteristics.
* The linker now deduplicates the types in .ctf sections. The new
command-line option --ctf-share-types describes how to do this:
its default value, share-unconflicted, produces the most compact
output.
* The linker now omits the 'variable section' from .ctf sections
by default, saving space. This is almost certainly what you
want unless you are working on a project that has its own
analogue of symbol tables that are not reflected in the ELF
symtabs.
New features in other binary tools:
* The ar tool's previously unused l modifier is now used for
specifying dependencies of a static library. The arguments of
this option (or --record-libdeps long form option) will be
stored verbatim in the __.LIBDEP member of the archive, which
the linker may read at link time.
* Readelf can now display the contents of LTO symbol table
sections when asked to do so via the --lto-syms command line
option.
* Readelf now accepts the -C command line option to enable the
demangling of symbol names. In addition the --demangle=<style>,
--no-demangle, --recurse-limit and --no-recurse-limit options
are also now availale.
The following security fixes are addressed by the update:
- CVE-2021-20197: Fixed a race condition which allows users to own arbitrary files (bsc#1181452).
- CVE-2021-20284: Fixed a heap-based buffer overflow in _bfd_elf_slurp_secondary_reloc_section in elf.c (bsc#1183511).
- CVE-2021-3487: Fixed a denial of service via excessive debug section size causing excessive memory consumption in bfd's dwarf2.c read_section() (bsc#1184620).
- CVE-2020-35448: Fixed a heap-based buffer over-read in bfd_getl_signed_32() in libbfd.c (bsc#1184794).
- CVE-2020-16590: Fixed a double free vulnerability in process_symbol_table() (bsc#1179898).
- CVE-2020-16591: Fixed an invalid read in process_symbol_table() (bsc#1179899).
- CVE-2020-16592: Fixed an use-after-free in bfd_hash_lookup() (bsc#1179900).
- CVE-2020-16593: Fixed a null pointer dereference in scan_unit_for_symbols() (bsc#1179901).
- CVE-2020-16598: Fixed a null pointer dereference in debug_get_real_type() (bsc#1179902).
- CVE-2020-16599: Fixed a null pointer dereference in _bfd_elf_get_symbol_version_string() (bsc#1179903)
- CVE-2020-35493: Fixed heap-based buffer overflow in bfd_pef_parse_function_stubs function in bfd/pef.c via crafted PEF file (bsc#1180451).
- CVE-2020-35496: Fixed multiple null pointer dereferences in bfd module due to not checking return value of bfd_malloc (bsc#1180454).
- CVE-2020-35507: Fixed a null pointer dereference in bfd_pef_parse_function_stubs() (bsc#1180461).
- CVE-2021-20294: Fixed out-of-bounds write in print_dynamic_symbol in readelf (bnc#1184519)
Patchnames
SUSE-2022-934,SUSE-SLE-Product-HPC-15-2022-934,SUSE-SLE-Product-SLES-15-2022-934,SUSE-SLE-Product-SLES_SAP-15-2022-934
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for binutils", title: "Title of the patch", }, { category: "description", text: "\nThis update for binutils fixes the following issues:\n\n- For compatibility on old code stream that expect 'brcl 0,label' to\n not be disassembled as 'jgnop label' on s390x. (bsc#1192267)\n This reverts IBM zSeries HLASM support for now.\n- Fixed that ppc64 optflags did not enable LTO (bsc#1188941).\n- Fix empty man-pages from broken release tarball\n- Fixed a memory corruption with rpath option (bsc#1191473).\n- Fixed slow performance of stripping some binaries (bsc#1183909).\n\n\nUpdate to binutils 2.37:\n\n* The GNU Binutils sources now requires a C99 compiler and library to\n build.\n* Support for Realm Management Extension (RME) for AArch64 has been\n added.\n* A new linker option '-z report-relative-reloc' for x86 ELF targets\n has been added to report dynamic relative relocations.\n* A new linker option '-z start-stop-gc' has been added to disable\n special treatment of __start_*/__stop_* references when\n --gc-sections.\n* A new linker options '-Bno-symbolic' has been added which will\n cancel the '-Bsymbolic' and '-Bsymbolic-functions' options.\n* The readelf tool has a new command line option which can be used to\n specify how the numeric values of symbols are reported.\n --sym-base=0|8|10|16 tells readelf to display the values in base 8,\n base 10 or base 16. A sym base of 0 represents the default action\n of displaying values under 10000 in base 10 and values above that in\n base 16.\n* A new format has been added to the nm program. Specifying\n '--format=just-symbols' (or just using -j) will tell the program to\n only display symbol names and nothing else.\n* A new command line option '--keep-section-symbols' has been added to\n objcopy and strip. This stops the removal of unused section symbols\n when the file is copied. Removing these symbols saves space, but\n sometimes they are needed by other tools.\n* The '--weaken', '--weaken-symbol' and '--weaken-symbols' options\n supported by objcopy now make undefined symbols weak on targets that\n support weak symbols. \n* Readelf and objdump can now display and use the contents of .debug_sup\n sections.\n* Readelf and objdump will now follow links to separate debug info\n files by default. This behaviour can be stopped via the use of the\n new '-wN' or '--debug-dump=no-follow-links' options for readelf and\n the '-WN' or '--dwarf=no-follow-links' options for objdump. Also\n the old behaviour can be restored by the use of the\n '--enable-follow-debug-links=no' configure time option.\n\n The semantics of the =follow-links option have also been slightly\n changed. When enabled, the option allows for the loading of symbol\n tables and string tables from the separate files which can be used\n to enhance the information displayed when dumping other sections,\n but it does not automatically imply that information from the\n separate files should be displayed.\n\n If other debug section display options are also enabled (eg\n '--debug-dump=info') then the contents of matching sections in both\n the main file and the separate debuginfo file *will* be displayed.\n This is because in most cases the debug section will only be present\n in one of the files.\n\n If however non-debug section display options are enabled (eg\n '--sections') then the contents of matching parts of the separate\n debuginfo file will *not* be displayed. This is because in most\n cases the user probably only wanted to load the symbol information\n from the separate debuginfo file. In order to change this behaviour\n a new command line option --process-links can be used. This will\n allow di0pslay options to applied to both the main file and any\n separate debuginfo files.\n\n* Nm has a new command line option: '--quiet'. This suppresses 'no\n symbols' diagnostic.\n\nUpdate to binutils 2.36:\n\nNew features in the Assembler:\n\n- General:\n\n * When setting the link order attribute of ELF sections, it is now\n possible to use a numeric section index instead of symbol name.\n * Added a .nop directive to generate a single no-op instruction in\n a target neutral manner. This instruction does have an effect on\n DWARF line number generation, if that is active.\n * Removed --reduce-memory-overheads and --hash-size as gas now\n uses hash tables that can be expand and shrink automatically.\n\n- X86/x86_64:\n\n * Add support for AVX VNNI, HRESET, UINTR, TDX, AMX and Key\n Locker instructions. \n * Support non-absolute segment values for lcall and ljmp.\n * Add {disp16} pseudo prefix to x86 assembler.\n * Configure with --enable-x86-used-note by default for Linux/x86.\n\n- ARM/AArch64:\n\n * Add support for Cortex-A78, Cortex-A78AE and Cortex-X1,\n Cortex-R82, Neoverse V1, and Neoverse N2 cores.\n * Add support for ETMv4 (Embedded Trace Macrocell), ETE (Embedded\n Trace Extension), TRBE (Trace Buffer Extension), CSRE (Call\n Stack Recorder Extension) and BRBE (Branch Record Buffer\n Extension) system registers.\n * Add support for Armv8-R and Armv8.7-A ISA extensions.\n * Add support for DSB memory nXS barrier, WFET and WFIT\n instruction for Armv8.7.\n * Add support for +csre feature for -march. Add CSR PDEC\n instruction for CSRE feature in AArch64.\n * Add support for +flagm feature for -march in Armv8.4 AArch64.\n * Add support for +ls64 feature for -march in Armv8.7\n AArch64. Add atomic 64-byte load/store instructions for this\n feature. \n * Add support for +pauth (Pointer Authentication) feature for\n -march in AArch64.\n\nNew features in the Linker:\n\n * Add --error-handling-script=<NAME> command line option to allow\n a helper script to be invoked when an undefined symbol or a\n missing library is encountered. This option can be suppressed\n via the configure time switch: --enable-error-handling-script=no.\n * Add -z x86-64-{baseline|v[234]} to the x86 ELF linker to mark\n x86-64-{baseline|v[234]} ISA level as needed.\n * Add -z unique-symbol to avoid duplicated local symbol names.\n * The creation of PE format DLLs now defaults to using a more\n secure set of DLL characteristics.\n * The linker now deduplicates the types in .ctf sections. The new \n command-line option --ctf-share-types describes how to do this:\n its default value, share-unconflicted, produces the most compact\n output.\n * The linker now omits the 'variable section' from .ctf sections\n by default, saving space. This is almost certainly what you\n want unless you are working on a project that has its own\n analogue of symbol tables that are not reflected in the ELF\n symtabs.\n\nNew features in other binary tools:\n\n * The ar tool's previously unused l modifier is now used for\n specifying dependencies of a static library. The arguments of\n this option (or --record-libdeps long form option) will be\n stored verbatim in the __.LIBDEP member of the archive, which\n the linker may read at link time.\n * Readelf can now display the contents of LTO symbol table\n sections when asked to do so via the --lto-syms command line\n option.\n * Readelf now accepts the -C command line option to enable the\n demangling of symbol names. In addition the --demangle=<style>,\n --no-demangle, --recurse-limit and --no-recurse-limit options\n are also now availale.\n\nThe following security fixes are addressed by the update:\n\n- CVE-2021-20197: Fixed a race condition which allows users to own arbitrary files (bsc#1181452).\n- CVE-2021-20284: Fixed a heap-based buffer overflow in _bfd_elf_slurp_secondary_reloc_section in elf.c (bsc#1183511).\n- CVE-2021-3487: Fixed a denial of service via excessive debug section size causing excessive memory consumption in bfd's dwarf2.c read_section() (bsc#1184620).\n- CVE-2020-35448: Fixed a heap-based buffer over-read in bfd_getl_signed_32() in libbfd.c (bsc#1184794).\n- CVE-2020-16590: Fixed a double free vulnerability in process_symbol_table() (bsc#1179898).\n- CVE-2020-16591: Fixed an invalid read in process_symbol_table() (bsc#1179899).\n- CVE-2020-16592: Fixed an use-after-free in bfd_hash_lookup() (bsc#1179900).\n- CVE-2020-16593: Fixed a null pointer dereference in scan_unit_for_symbols() (bsc#1179901).\n- CVE-2020-16598: Fixed a null pointer dereference in debug_get_real_type() (bsc#1179902).\n- CVE-2020-16599: Fixed a null pointer dereference in _bfd_elf_get_symbol_version_string() (bsc#1179903)\n- CVE-2020-35493: Fixed heap-based buffer overflow in bfd_pef_parse_function_stubs function in bfd/pef.c via crafted PEF file (bsc#1180451).\n- CVE-2020-35496: Fixed multiple null pointer dereferences in bfd module due to not checking return value of bfd_malloc (bsc#1180454).\n- CVE-2020-35507: Fixed a null pointer dereference in bfd_pef_parse_function_stubs() (bsc#1180461).\n- CVE-2021-20294: Fixed out-of-bounds write in print_dynamic_symbol in readelf (bnc#1184519)\n", title: "Description of the patch", }, { category: "details", text: "SUSE-2022-934,SUSE-SLE-Product-HPC-15-2022-934,SUSE-SLE-Product-SLES-15-2022-934,SUSE-SLE-Product-SLES_SAP-15-2022-934", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_0934-1.json", }, { category: "self", summary: "URL for SUSE-SU-2022:0934-1", url: "https://www.suse.com/support/update/announcement/2022/suse-su-20220934-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2022:0934-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2022-March/010497.html", }, { category: "self", summary: "SUSE Bug 1179898", url: "https://bugzilla.suse.com/1179898", }, { category: "self", summary: "SUSE Bug 1179899", url: "https://bugzilla.suse.com/1179899", }, { category: "self", summary: "SUSE Bug 1179900", url: "https://bugzilla.suse.com/1179900", }, { category: "self", summary: "SUSE Bug 1179901", url: "https://bugzilla.suse.com/1179901", }, { category: "self", summary: "SUSE Bug 1179902", url: "https://bugzilla.suse.com/1179902", }, { category: "self", summary: "SUSE Bug 1179903", url: "https://bugzilla.suse.com/1179903", }, { category: "self", summary: "SUSE Bug 1180451", url: "https://bugzilla.suse.com/1180451", }, { category: "self", summary: "SUSE Bug 1180454", url: "https://bugzilla.suse.com/1180454", }, { category: "self", summary: "SUSE Bug 1180461", url: "https://bugzilla.suse.com/1180461", }, { category: "self", summary: "SUSE Bug 1181452", url: "https://bugzilla.suse.com/1181452", }, { category: "self", summary: "SUSE Bug 1182252", url: "https://bugzilla.suse.com/1182252", }, { category: "self", summary: "SUSE Bug 1183511", url: "https://bugzilla.suse.com/1183511", }, { category: "self", summary: "SUSE Bug 1183909", url: "https://bugzilla.suse.com/1183909", }, { category: "self", summary: "SUSE Bug 1184519", url: "https://bugzilla.suse.com/1184519", }, { category: "self", summary: "SUSE Bug 1184620", url: "https://bugzilla.suse.com/1184620", }, { category: "self", summary: "SUSE Bug 1184794", url: "https://bugzilla.suse.com/1184794", }, { category: "self", summary: "SUSE Bug 1188941", url: "https://bugzilla.suse.com/1188941", }, { category: "self", summary: "SUSE Bug 1191473", url: "https://bugzilla.suse.com/1191473", }, { category: "self", summary: "SUSE Bug 1192267", url: "https://bugzilla.suse.com/1192267", }, { category: "self", summary: "SUSE CVE CVE-2020-16590 page", url: "https://www.suse.com/security/cve/CVE-2020-16590/", }, { category: "self", summary: "SUSE CVE CVE-2020-16591 page", url: "https://www.suse.com/security/cve/CVE-2020-16591/", }, { category: "self", summary: "SUSE CVE CVE-2020-16592 page", url: "https://www.suse.com/security/cve/CVE-2020-16592/", }, { category: "self", summary: "SUSE CVE CVE-2020-16593 page", url: "https://www.suse.com/security/cve/CVE-2020-16593/", }, { category: "self", summary: "SUSE CVE CVE-2020-16598 page", url: "https://www.suse.com/security/cve/CVE-2020-16598/", }, { category: "self", summary: "SUSE CVE CVE-2020-16599 page", url: "https://www.suse.com/security/cve/CVE-2020-16599/", }, { category: "self", summary: "SUSE CVE CVE-2020-35448 page", url: "https://www.suse.com/security/cve/CVE-2020-35448/", }, { category: "self", summary: "SUSE CVE CVE-2020-35493 page", url: "https://www.suse.com/security/cve/CVE-2020-35493/", }, { category: "self", summary: "SUSE CVE CVE-2020-35496 page", url: "https://www.suse.com/security/cve/CVE-2020-35496/", }, { category: "self", summary: "SUSE CVE CVE-2020-35507 page", url: "https://www.suse.com/security/cve/CVE-2020-35507/", }, { category: "self", summary: "SUSE CVE CVE-2021-20197 page", url: "https://www.suse.com/security/cve/CVE-2021-20197/", }, { category: "self", summary: "SUSE CVE CVE-2021-20284 page", url: "https://www.suse.com/security/cve/CVE-2021-20284/", }, { category: "self", summary: "SUSE CVE CVE-2021-20294 page", url: "https://www.suse.com/security/cve/CVE-2021-20294/", }, { category: "self", summary: "SUSE CVE CVE-2021-3487 page", url: "https://www.suse.com/security/cve/CVE-2021-3487/", }, ], title: "Security update for binutils", tracking: { current_release_date: "2022-03-22T10:21:45Z", generator: { date: "2022-03-22T10:21:45Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2022:0934-1", initial_release_date: "2022-03-22T10:21:45Z", revision_history: [ { date: "2022-03-22T10:21:45Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "binutils-2.37-6.23.1.aarch64", product: { name: "binutils-2.37-6.23.1.aarch64", product_id: "binutils-2.37-6.23.1.aarch64", }, }, { category: "product_version", name: "binutils-devel-2.37-6.23.1.aarch64", product: { name: "binutils-devel-2.37-6.23.1.aarch64", product_id: "binutils-devel-2.37-6.23.1.aarch64", }, }, { category: "product_version", name: "binutils-gold-2.37-6.23.1.aarch64", product: { name: "binutils-gold-2.37-6.23.1.aarch64", product_id: "binutils-gold-2.37-6.23.1.aarch64", }, }, { category: "product_version", name: "cross-arm-binutils-2.37-6.23.1.aarch64", product: { name: "cross-arm-binutils-2.37-6.23.1.aarch64", product_id: "cross-arm-binutils-2.37-6.23.1.aarch64", }, }, { category: "product_version", name: "cross-avr-binutils-2.37-6.23.1.aarch64", product: { name: "cross-avr-binutils-2.37-6.23.1.aarch64", product_id: "cross-avr-binutils-2.37-6.23.1.aarch64", }, }, { category: "product_version", name: "cross-epiphany-binutils-2.37-6.23.1.aarch64", product: { name: "cross-epiphany-binutils-2.37-6.23.1.aarch64", product_id: "cross-epiphany-binutils-2.37-6.23.1.aarch64", }, }, { category: "product_version", name: "cross-hppa-binutils-2.37-6.23.1.aarch64", product: { name: "cross-hppa-binutils-2.37-6.23.1.aarch64", product_id: "cross-hppa-binutils-2.37-6.23.1.aarch64", }, }, { category: "product_version", name: "cross-hppa64-binutils-2.37-6.23.1.aarch64", product: { name: "cross-hppa64-binutils-2.37-6.23.1.aarch64", product_id: "cross-hppa64-binutils-2.37-6.23.1.aarch64", }, }, { category: "product_version", name: "cross-i386-binutils-2.37-6.23.1.aarch64", product: { name: "cross-i386-binutils-2.37-6.23.1.aarch64", product_id: "cross-i386-binutils-2.37-6.23.1.aarch64", }, }, { category: "product_version", name: "cross-ia64-binutils-2.37-6.23.1.aarch64", product: { name: "cross-ia64-binutils-2.37-6.23.1.aarch64", product_id: "cross-ia64-binutils-2.37-6.23.1.aarch64", }, }, { category: "product_version", name: "cross-m68k-binutils-2.37-6.23.1.aarch64", product: { name: "cross-m68k-binutils-2.37-6.23.1.aarch64", product_id: "cross-m68k-binutils-2.37-6.23.1.aarch64", }, }, { category: "product_version", name: "cross-mips-binutils-2.37-6.23.1.aarch64", product: { name: "cross-mips-binutils-2.37-6.23.1.aarch64", product_id: "cross-mips-binutils-2.37-6.23.1.aarch64", }, }, { category: "product_version", name: "cross-ppc-binutils-2.37-6.23.1.aarch64", product: { name: "cross-ppc-binutils-2.37-6.23.1.aarch64", product_id: "cross-ppc-binutils-2.37-6.23.1.aarch64", }, }, { category: "product_version", name: "cross-ppc64-binutils-2.37-6.23.1.aarch64", product: { name: "cross-ppc64-binutils-2.37-6.23.1.aarch64", product_id: "cross-ppc64-binutils-2.37-6.23.1.aarch64", }, }, { category: "product_version", name: "cross-ppc64le-binutils-2.37-6.23.1.aarch64", product: { name: "cross-ppc64le-binutils-2.37-6.23.1.aarch64", product_id: "cross-ppc64le-binutils-2.37-6.23.1.aarch64", }, }, { category: "product_version", name: "cross-riscv64-binutils-2.37-6.23.1.aarch64", product: { name: "cross-riscv64-binutils-2.37-6.23.1.aarch64", product_id: "cross-riscv64-binutils-2.37-6.23.1.aarch64", }, }, { category: "product_version", name: "cross-rx-binutils-2.37-6.23.1.aarch64", product: { name: "cross-rx-binutils-2.37-6.23.1.aarch64", product_id: "cross-rx-binutils-2.37-6.23.1.aarch64", }, }, { category: "product_version", name: "cross-s390-binutils-2.37-6.23.1.aarch64", product: { name: "cross-s390-binutils-2.37-6.23.1.aarch64", product_id: "cross-s390-binutils-2.37-6.23.1.aarch64", }, }, { category: "product_version", name: "cross-s390x-binutils-2.37-6.23.1.aarch64", product: { name: "cross-s390x-binutils-2.37-6.23.1.aarch64", product_id: "cross-s390x-binutils-2.37-6.23.1.aarch64", }, }, { category: "product_version", name: "cross-sparc-binutils-2.37-6.23.1.aarch64", product: { name: "cross-sparc-binutils-2.37-6.23.1.aarch64", product_id: "cross-sparc-binutils-2.37-6.23.1.aarch64", }, }, { category: "product_version", name: "cross-sparc64-binutils-2.37-6.23.1.aarch64", product: { name: "cross-sparc64-binutils-2.37-6.23.1.aarch64", product_id: "cross-sparc64-binutils-2.37-6.23.1.aarch64", }, }, { category: "product_version", name: "cross-spu-binutils-2.37-6.23.1.aarch64", product: { name: "cross-spu-binutils-2.37-6.23.1.aarch64", product_id: "cross-spu-binutils-2.37-6.23.1.aarch64", }, }, { category: "product_version", name: "cross-x86_64-binutils-2.37-6.23.1.aarch64", product: { name: "cross-x86_64-binutils-2.37-6.23.1.aarch64", product_id: "cross-x86_64-binutils-2.37-6.23.1.aarch64", }, }, { category: "product_version", name: "libctf-nobfd0-2.37-6.23.1.aarch64", product: { name: "libctf-nobfd0-2.37-6.23.1.aarch64", product_id: "libctf-nobfd0-2.37-6.23.1.aarch64", }, }, { category: "product_version", name: "libctf0-2.37-6.23.1.aarch64", product: { name: "libctf0-2.37-6.23.1.aarch64", product_id: "libctf0-2.37-6.23.1.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "binutils-devel-64bit-2.37-6.23.1.aarch64_ilp32", product: { name: "binutils-devel-64bit-2.37-6.23.1.aarch64_ilp32", product_id: "binutils-devel-64bit-2.37-6.23.1.aarch64_ilp32", }, }, ], category: "architecture", name: "aarch64_ilp32", }, { branches: [ { category: "product_version", name: "binutils-2.37-6.23.1.i586", product: { name: "binutils-2.37-6.23.1.i586", product_id: "binutils-2.37-6.23.1.i586", }, }, { category: "product_version", name: "binutils-devel-2.37-6.23.1.i586", product: { name: "binutils-devel-2.37-6.23.1.i586", product_id: "binutils-devel-2.37-6.23.1.i586", }, }, { category: "product_version", name: "binutils-gold-2.37-6.23.1.i586", product: { name: "binutils-gold-2.37-6.23.1.i586", product_id: "binutils-gold-2.37-6.23.1.i586", }, }, { category: "product_version", name: "cross-aarch64-binutils-2.37-6.23.1.i586", product: { name: "cross-aarch64-binutils-2.37-6.23.1.i586", product_id: "cross-aarch64-binutils-2.37-6.23.1.i586", }, }, { category: "product_version", name: "cross-arm-binutils-2.37-6.23.1.i586", product: { name: "cross-arm-binutils-2.37-6.23.1.i586", product_id: "cross-arm-binutils-2.37-6.23.1.i586", }, }, { category: "product_version", name: "cross-avr-binutils-2.37-6.23.1.i586", product: { name: "cross-avr-binutils-2.37-6.23.1.i586", product_id: "cross-avr-binutils-2.37-6.23.1.i586", }, }, { category: "product_version", name: "cross-epiphany-binutils-2.37-6.23.1.i586", product: { name: "cross-epiphany-binutils-2.37-6.23.1.i586", product_id: "cross-epiphany-binutils-2.37-6.23.1.i586", }, }, { category: "product_version", name: "cross-hppa-binutils-2.37-6.23.1.i586", product: { name: "cross-hppa-binutils-2.37-6.23.1.i586", product_id: "cross-hppa-binutils-2.37-6.23.1.i586", }, }, { category: "product_version", name: "cross-hppa64-binutils-2.37-6.23.1.i586", product: { name: "cross-hppa64-binutils-2.37-6.23.1.i586", product_id: "cross-hppa64-binutils-2.37-6.23.1.i586", }, }, { category: "product_version", name: "cross-ia64-binutils-2.37-6.23.1.i586", product: { name: "cross-ia64-binutils-2.37-6.23.1.i586", product_id: "cross-ia64-binutils-2.37-6.23.1.i586", }, }, { category: "product_version", name: "cross-m68k-binutils-2.37-6.23.1.i586", product: { name: "cross-m68k-binutils-2.37-6.23.1.i586", product_id: "cross-m68k-binutils-2.37-6.23.1.i586", }, }, { category: "product_version", name: "cross-mips-binutils-2.37-6.23.1.i586", product: { name: "cross-mips-binutils-2.37-6.23.1.i586", product_id: "cross-mips-binutils-2.37-6.23.1.i586", }, }, { category: "product_version", name: "cross-ppc-binutils-2.37-6.23.1.i586", product: { name: "cross-ppc-binutils-2.37-6.23.1.i586", product_id: "cross-ppc-binutils-2.37-6.23.1.i586", }, }, { category: "product_version", name: "cross-ppc64-binutils-2.37-6.23.1.i586", product: { name: "cross-ppc64-binutils-2.37-6.23.1.i586", product_id: "cross-ppc64-binutils-2.37-6.23.1.i586", }, }, { category: "product_version", name: "cross-ppc64le-binutils-2.37-6.23.1.i586", product: { name: "cross-ppc64le-binutils-2.37-6.23.1.i586", product_id: "cross-ppc64le-binutils-2.37-6.23.1.i586", }, }, { category: "product_version", name: "cross-riscv64-binutils-2.37-6.23.1.i586", product: { name: "cross-riscv64-binutils-2.37-6.23.1.i586", product_id: "cross-riscv64-binutils-2.37-6.23.1.i586", }, }, { category: "product_version", name: "cross-rx-binutils-2.37-6.23.1.i586", product: { name: "cross-rx-binutils-2.37-6.23.1.i586", product_id: "cross-rx-binutils-2.37-6.23.1.i586", }, }, { category: "product_version", name: "cross-s390-binutils-2.37-6.23.1.i586", product: { name: "cross-s390-binutils-2.37-6.23.1.i586", product_id: "cross-s390-binutils-2.37-6.23.1.i586", }, }, { category: "product_version", name: "cross-s390x-binutils-2.37-6.23.1.i586", product: { name: "cross-s390x-binutils-2.37-6.23.1.i586", product_id: "cross-s390x-binutils-2.37-6.23.1.i586", }, }, { category: "product_version", name: "cross-sparc-binutils-2.37-6.23.1.i586", product: { name: "cross-sparc-binutils-2.37-6.23.1.i586", product_id: "cross-sparc-binutils-2.37-6.23.1.i586", }, }, { category: "product_version", name: "cross-sparc64-binutils-2.37-6.23.1.i586", product: { name: "cross-sparc64-binutils-2.37-6.23.1.i586", product_id: "cross-sparc64-binutils-2.37-6.23.1.i586", }, }, { category: "product_version", name: "cross-spu-binutils-2.37-6.23.1.i586", product: { name: "cross-spu-binutils-2.37-6.23.1.i586", product_id: "cross-spu-binutils-2.37-6.23.1.i586", }, }, { category: "product_version", name: "cross-x86_64-binutils-2.37-6.23.1.i586", product: { name: "cross-x86_64-binutils-2.37-6.23.1.i586", product_id: "cross-x86_64-binutils-2.37-6.23.1.i586", }, }, { category: "product_version", name: "libctf-nobfd0-2.37-6.23.1.i586", product: { name: "libctf-nobfd0-2.37-6.23.1.i586", product_id: "libctf-nobfd0-2.37-6.23.1.i586", }, }, { category: "product_version", name: "libctf0-2.37-6.23.1.i586", product: { name: "libctf0-2.37-6.23.1.i586", product_id: "libctf0-2.37-6.23.1.i586", }, }, ], category: "architecture", name: "i586", }, { branches: [ { category: "product_version", name: "binutils-2.37-6.23.1.ppc64le", product: { name: "binutils-2.37-6.23.1.ppc64le", product_id: "binutils-2.37-6.23.1.ppc64le", }, }, { category: "product_version", name: "binutils-devel-2.37-6.23.1.ppc64le", product: { name: "binutils-devel-2.37-6.23.1.ppc64le", product_id: "binutils-devel-2.37-6.23.1.ppc64le", }, }, { category: "product_version", name: "binutils-gold-2.37-6.23.1.ppc64le", product: { name: "binutils-gold-2.37-6.23.1.ppc64le", product_id: "binutils-gold-2.37-6.23.1.ppc64le", }, }, { category: "product_version", name: "cross-aarch64-binutils-2.37-6.23.1.ppc64le", product: { name: "cross-aarch64-binutils-2.37-6.23.1.ppc64le", product_id: "cross-aarch64-binutils-2.37-6.23.1.ppc64le", }, }, { category: "product_version", name: "cross-arm-binutils-2.37-6.23.1.ppc64le", product: { name: "cross-arm-binutils-2.37-6.23.1.ppc64le", product_id: "cross-arm-binutils-2.37-6.23.1.ppc64le", }, }, { category: "product_version", name: "cross-avr-binutils-2.37-6.23.1.ppc64le", product: { name: "cross-avr-binutils-2.37-6.23.1.ppc64le", product_id: "cross-avr-binutils-2.37-6.23.1.ppc64le", }, }, { category: "product_version", name: "cross-epiphany-binutils-2.37-6.23.1.ppc64le", product: { name: "cross-epiphany-binutils-2.37-6.23.1.ppc64le", product_id: "cross-epiphany-binutils-2.37-6.23.1.ppc64le", }, }, { category: "product_version", name: "cross-hppa-binutils-2.37-6.23.1.ppc64le", product: { name: "cross-hppa-binutils-2.37-6.23.1.ppc64le", product_id: "cross-hppa-binutils-2.37-6.23.1.ppc64le", }, }, { category: "product_version", name: "cross-hppa64-binutils-2.37-6.23.1.ppc64le", product: { name: "cross-hppa64-binutils-2.37-6.23.1.ppc64le", product_id: "cross-hppa64-binutils-2.37-6.23.1.ppc64le", }, }, { category: "product_version", name: "cross-i386-binutils-2.37-6.23.1.ppc64le", product: { name: "cross-i386-binutils-2.37-6.23.1.ppc64le", product_id: "cross-i386-binutils-2.37-6.23.1.ppc64le", }, }, { category: "product_version", name: "cross-ia64-binutils-2.37-6.23.1.ppc64le", product: { name: "cross-ia64-binutils-2.37-6.23.1.ppc64le", product_id: "cross-ia64-binutils-2.37-6.23.1.ppc64le", }, }, { category: "product_version", name: "cross-m68k-binutils-2.37-6.23.1.ppc64le", product: { name: "cross-m68k-binutils-2.37-6.23.1.ppc64le", product_id: "cross-m68k-binutils-2.37-6.23.1.ppc64le", }, }, { category: "product_version", name: "cross-mips-binutils-2.37-6.23.1.ppc64le", product: { name: "cross-mips-binutils-2.37-6.23.1.ppc64le", product_id: "cross-mips-binutils-2.37-6.23.1.ppc64le", }, }, { category: "product_version", name: "cross-ppc-binutils-2.37-6.23.1.ppc64le", product: { name: "cross-ppc-binutils-2.37-6.23.1.ppc64le", product_id: "cross-ppc-binutils-2.37-6.23.1.ppc64le", }, }, { category: "product_version", name: "cross-ppc64-binutils-2.37-6.23.1.ppc64le", product: { name: "cross-ppc64-binutils-2.37-6.23.1.ppc64le", product_id: "cross-ppc64-binutils-2.37-6.23.1.ppc64le", }, }, { category: "product_version", name: "cross-riscv64-binutils-2.37-6.23.1.ppc64le", product: { name: "cross-riscv64-binutils-2.37-6.23.1.ppc64le", product_id: "cross-riscv64-binutils-2.37-6.23.1.ppc64le", }, }, { category: "product_version", name: "cross-rx-binutils-2.37-6.23.1.ppc64le", product: { name: "cross-rx-binutils-2.37-6.23.1.ppc64le", product_id: "cross-rx-binutils-2.37-6.23.1.ppc64le", }, }, { category: "product_version", name: "cross-s390-binutils-2.37-6.23.1.ppc64le", product: { name: "cross-s390-binutils-2.37-6.23.1.ppc64le", product_id: "cross-s390-binutils-2.37-6.23.1.ppc64le", }, }, { category: "product_version", name: "cross-s390x-binutils-2.37-6.23.1.ppc64le", product: { name: "cross-s390x-binutils-2.37-6.23.1.ppc64le", product_id: "cross-s390x-binutils-2.37-6.23.1.ppc64le", }, }, { category: "product_version", name: "cross-sparc-binutils-2.37-6.23.1.ppc64le", product: { name: "cross-sparc-binutils-2.37-6.23.1.ppc64le", product_id: "cross-sparc-binutils-2.37-6.23.1.ppc64le", }, }, { category: "product_version", name: "cross-sparc64-binutils-2.37-6.23.1.ppc64le", product: { name: "cross-sparc64-binutils-2.37-6.23.1.ppc64le", product_id: "cross-sparc64-binutils-2.37-6.23.1.ppc64le", }, }, { category: "product_version", name: "cross-spu-binutils-2.37-6.23.1.ppc64le", product: { name: "cross-spu-binutils-2.37-6.23.1.ppc64le", product_id: "cross-spu-binutils-2.37-6.23.1.ppc64le", }, }, { category: "product_version", name: "cross-x86_64-binutils-2.37-6.23.1.ppc64le", product: { name: "cross-x86_64-binutils-2.37-6.23.1.ppc64le", product_id: "cross-x86_64-binutils-2.37-6.23.1.ppc64le", }, }, { category: "product_version", name: "libctf-nobfd0-2.37-6.23.1.ppc64le", product: { name: "libctf-nobfd0-2.37-6.23.1.ppc64le", product_id: "libctf-nobfd0-2.37-6.23.1.ppc64le", }, }, { category: "product_version", name: "libctf0-2.37-6.23.1.ppc64le", product: { name: "libctf0-2.37-6.23.1.ppc64le", product_id: "libctf0-2.37-6.23.1.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "binutils-2.37-6.23.1.s390x", product: { name: "binutils-2.37-6.23.1.s390x", product_id: "binutils-2.37-6.23.1.s390x", }, }, { category: "product_version", name: "binutils-devel-2.37-6.23.1.s390x", product: { name: "binutils-devel-2.37-6.23.1.s390x", product_id: "binutils-devel-2.37-6.23.1.s390x", }, }, { category: "product_version", name: "binutils-gold-2.37-6.23.1.s390x", product: { name: "binutils-gold-2.37-6.23.1.s390x", product_id: "binutils-gold-2.37-6.23.1.s390x", }, }, { category: "product_version", name: "cross-aarch64-binutils-2.37-6.23.1.s390x", product: { name: "cross-aarch64-binutils-2.37-6.23.1.s390x", product_id: "cross-aarch64-binutils-2.37-6.23.1.s390x", }, }, { category: "product_version", name: "cross-arm-binutils-2.37-6.23.1.s390x", product: { name: "cross-arm-binutils-2.37-6.23.1.s390x", product_id: "cross-arm-binutils-2.37-6.23.1.s390x", }, }, { category: "product_version", name: "cross-avr-binutils-2.37-6.23.1.s390x", product: { name: "cross-avr-binutils-2.37-6.23.1.s390x", product_id: "cross-avr-binutils-2.37-6.23.1.s390x", }, }, { category: "product_version", name: "cross-epiphany-binutils-2.37-6.23.1.s390x", product: { name: "cross-epiphany-binutils-2.37-6.23.1.s390x", product_id: "cross-epiphany-binutils-2.37-6.23.1.s390x", }, }, { category: "product_version", name: "cross-hppa-binutils-2.37-6.23.1.s390x", product: { name: "cross-hppa-binutils-2.37-6.23.1.s390x", product_id: "cross-hppa-binutils-2.37-6.23.1.s390x", }, }, { category: "product_version", name: "cross-hppa64-binutils-2.37-6.23.1.s390x", product: { name: "cross-hppa64-binutils-2.37-6.23.1.s390x", product_id: "cross-hppa64-binutils-2.37-6.23.1.s390x", }, }, { category: "product_version", name: "cross-i386-binutils-2.37-6.23.1.s390x", product: { name: "cross-i386-binutils-2.37-6.23.1.s390x", product_id: "cross-i386-binutils-2.37-6.23.1.s390x", }, }, { category: "product_version", name: "cross-ia64-binutils-2.37-6.23.1.s390x", product: { name: "cross-ia64-binutils-2.37-6.23.1.s390x", product_id: "cross-ia64-binutils-2.37-6.23.1.s390x", }, }, { category: "product_version", name: "cross-m68k-binutils-2.37-6.23.1.s390x", product: { name: "cross-m68k-binutils-2.37-6.23.1.s390x", product_id: "cross-m68k-binutils-2.37-6.23.1.s390x", }, }, { category: "product_version", name: "cross-mips-binutils-2.37-6.23.1.s390x", product: { name: "cross-mips-binutils-2.37-6.23.1.s390x", product_id: "cross-mips-binutils-2.37-6.23.1.s390x", }, }, { category: "product_version", name: "cross-ppc-binutils-2.37-6.23.1.s390x", product: { name: "cross-ppc-binutils-2.37-6.23.1.s390x", product_id: "cross-ppc-binutils-2.37-6.23.1.s390x", }, }, { category: "product_version", name: "cross-ppc64-binutils-2.37-6.23.1.s390x", product: { name: "cross-ppc64-binutils-2.37-6.23.1.s390x", product_id: "cross-ppc64-binutils-2.37-6.23.1.s390x", }, }, { category: "product_version", name: "cross-ppc64le-binutils-2.37-6.23.1.s390x", product: { name: "cross-ppc64le-binutils-2.37-6.23.1.s390x", product_id: "cross-ppc64le-binutils-2.37-6.23.1.s390x", }, }, { category: "product_version", name: "cross-riscv64-binutils-2.37-6.23.1.s390x", product: { name: "cross-riscv64-binutils-2.37-6.23.1.s390x", product_id: "cross-riscv64-binutils-2.37-6.23.1.s390x", }, }, { category: "product_version", name: "cross-rx-binutils-2.37-6.23.1.s390x", product: { name: "cross-rx-binutils-2.37-6.23.1.s390x", product_id: "cross-rx-binutils-2.37-6.23.1.s390x", }, }, { category: "product_version", name: "cross-s390-binutils-2.37-6.23.1.s390x", product: { name: "cross-s390-binutils-2.37-6.23.1.s390x", product_id: "cross-s390-binutils-2.37-6.23.1.s390x", }, }, { category: "product_version", name: "cross-sparc-binutils-2.37-6.23.1.s390x", product: { name: "cross-sparc-binutils-2.37-6.23.1.s390x", product_id: "cross-sparc-binutils-2.37-6.23.1.s390x", }, }, { category: "product_version", name: "cross-sparc64-binutils-2.37-6.23.1.s390x", product: { name: "cross-sparc64-binutils-2.37-6.23.1.s390x", product_id: "cross-sparc64-binutils-2.37-6.23.1.s390x", }, }, { category: "product_version", name: "cross-spu-binutils-2.37-6.23.1.s390x", product: { name: "cross-spu-binutils-2.37-6.23.1.s390x", product_id: "cross-spu-binutils-2.37-6.23.1.s390x", }, }, { category: "product_version", name: "cross-x86_64-binutils-2.37-6.23.1.s390x", product: { name: "cross-x86_64-binutils-2.37-6.23.1.s390x", product_id: "cross-x86_64-binutils-2.37-6.23.1.s390x", }, }, { category: "product_version", name: "libctf-nobfd0-2.37-6.23.1.s390x", product: { name: "libctf-nobfd0-2.37-6.23.1.s390x", product_id: "libctf-nobfd0-2.37-6.23.1.s390x", }, }, { category: "product_version", name: "libctf0-2.37-6.23.1.s390x", product: { name: "libctf0-2.37-6.23.1.s390x", product_id: "libctf0-2.37-6.23.1.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "binutils-2.37-6.23.1.x86_64", product: { name: "binutils-2.37-6.23.1.x86_64", product_id: "binutils-2.37-6.23.1.x86_64", }, }, { category: "product_version", name: "binutils-devel-2.37-6.23.1.x86_64", product: { name: "binutils-devel-2.37-6.23.1.x86_64", product_id: "binutils-devel-2.37-6.23.1.x86_64", }, }, { category: "product_version", name: "binutils-devel-32bit-2.37-6.23.1.x86_64", product: { name: "binutils-devel-32bit-2.37-6.23.1.x86_64", product_id: "binutils-devel-32bit-2.37-6.23.1.x86_64", }, }, { category: "product_version", name: "binutils-gold-2.37-6.23.1.x86_64", product: { name: "binutils-gold-2.37-6.23.1.x86_64", product_id: "binutils-gold-2.37-6.23.1.x86_64", }, }, { category: "product_version", name: "cross-aarch64-binutils-2.37-6.23.1.x86_64", product: { name: "cross-aarch64-binutils-2.37-6.23.1.x86_64", product_id: "cross-aarch64-binutils-2.37-6.23.1.x86_64", }, }, { category: "product_version", name: "cross-arm-binutils-2.37-6.23.1.x86_64", product: { name: "cross-arm-binutils-2.37-6.23.1.x86_64", product_id: "cross-arm-binutils-2.37-6.23.1.x86_64", }, }, { category: "product_version", name: "cross-avr-binutils-2.37-6.23.1.x86_64", product: { name: "cross-avr-binutils-2.37-6.23.1.x86_64", product_id: "cross-avr-binutils-2.37-6.23.1.x86_64", }, }, { category: "product_version", name: "cross-epiphany-binutils-2.37-6.23.1.x86_64", product: { name: "cross-epiphany-binutils-2.37-6.23.1.x86_64", product_id: "cross-epiphany-binutils-2.37-6.23.1.x86_64", }, }, { category: "product_version", name: "cross-hppa-binutils-2.37-6.23.1.x86_64", product: { name: "cross-hppa-binutils-2.37-6.23.1.x86_64", product_id: "cross-hppa-binutils-2.37-6.23.1.x86_64", }, }, { category: "product_version", name: "cross-hppa64-binutils-2.37-6.23.1.x86_64", product: { name: "cross-hppa64-binutils-2.37-6.23.1.x86_64", product_id: "cross-hppa64-binutils-2.37-6.23.1.x86_64", }, }, { category: "product_version", name: "cross-i386-binutils-2.37-6.23.1.x86_64", product: { name: "cross-i386-binutils-2.37-6.23.1.x86_64", product_id: "cross-i386-binutils-2.37-6.23.1.x86_64", }, }, { category: "product_version", name: "cross-ia64-binutils-2.37-6.23.1.x86_64", product: { name: "cross-ia64-binutils-2.37-6.23.1.x86_64", product_id: "cross-ia64-binutils-2.37-6.23.1.x86_64", }, }, { category: "product_version", name: "cross-m68k-binutils-2.37-6.23.1.x86_64", product: { name: "cross-m68k-binutils-2.37-6.23.1.x86_64", product_id: "cross-m68k-binutils-2.37-6.23.1.x86_64", }, }, { category: "product_version", name: "cross-mips-binutils-2.37-6.23.1.x86_64", product: { name: "cross-mips-binutils-2.37-6.23.1.x86_64", product_id: "cross-mips-binutils-2.37-6.23.1.x86_64", }, }, { category: "product_version", name: "cross-ppc-binutils-2.37-6.23.1.x86_64", product: { name: "cross-ppc-binutils-2.37-6.23.1.x86_64", product_id: "cross-ppc-binutils-2.37-6.23.1.x86_64", }, }, { category: "product_version", name: "cross-ppc64-binutils-2.37-6.23.1.x86_64", product: { name: "cross-ppc64-binutils-2.37-6.23.1.x86_64", product_id: "cross-ppc64-binutils-2.37-6.23.1.x86_64", }, }, { category: "product_version", name: "cross-ppc64le-binutils-2.37-6.23.1.x86_64", product: { name: "cross-ppc64le-binutils-2.37-6.23.1.x86_64", product_id: "cross-ppc64le-binutils-2.37-6.23.1.x86_64", }, }, { category: "product_version", name: "cross-riscv64-binutils-2.37-6.23.1.x86_64", product: { name: "cross-riscv64-binutils-2.37-6.23.1.x86_64", product_id: "cross-riscv64-binutils-2.37-6.23.1.x86_64", }, }, { category: "product_version", name: "cross-rx-binutils-2.37-6.23.1.x86_64", product: { name: "cross-rx-binutils-2.37-6.23.1.x86_64", product_id: "cross-rx-binutils-2.37-6.23.1.x86_64", }, }, { category: "product_version", name: "cross-s390-binutils-2.37-6.23.1.x86_64", product: { name: "cross-s390-binutils-2.37-6.23.1.x86_64", product_id: "cross-s390-binutils-2.37-6.23.1.x86_64", }, }, { category: "product_version", name: "cross-s390x-binutils-2.37-6.23.1.x86_64", product: { name: "cross-s390x-binutils-2.37-6.23.1.x86_64", product_id: "cross-s390x-binutils-2.37-6.23.1.x86_64", }, }, { category: "product_version", name: "cross-sparc-binutils-2.37-6.23.1.x86_64", product: { name: "cross-sparc-binutils-2.37-6.23.1.x86_64", product_id: "cross-sparc-binutils-2.37-6.23.1.x86_64", }, }, { category: "product_version", name: "cross-sparc64-binutils-2.37-6.23.1.x86_64", product: { name: "cross-sparc64-binutils-2.37-6.23.1.x86_64", product_id: "cross-sparc64-binutils-2.37-6.23.1.x86_64", }, }, { category: "product_version", name: "cross-spu-binutils-2.37-6.23.1.x86_64", product: { name: "cross-spu-binutils-2.37-6.23.1.x86_64", product_id: "cross-spu-binutils-2.37-6.23.1.x86_64", }, }, { category: "product_version", name: "libctf-nobfd0-2.37-6.23.1.x86_64", product: { name: "libctf-nobfd0-2.37-6.23.1.x86_64", product_id: "libctf-nobfd0-2.37-6.23.1.x86_64", }, }, { category: "product_version", name: "libctf0-2.37-6.23.1.x86_64", product: { name: "libctf0-2.37-6.23.1.x86_64", product_id: "libctf0-2.37-6.23.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE Linux Enterprise High Performance Computing 15-ESPOS", product: { name: "SUSE Linux Enterprise High Performance Computing 15-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15-ESPOS", product_identification_helper: { cpe: "cpe:/o:suse:sle_hpc-espos:15", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise High Performance Computing 15-LTSS", product: { name: "SUSE Linux Enterprise High Performance Computing 15-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15-LTSS", product_identification_helper: { cpe: "cpe:/o:suse:sle_hpc-ltss:15", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server 15-LTSS", product: { name: "SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS", product_identification_helper: { cpe: "cpe:/o:suse:sles-ltss:15", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server for SAP Applications 15", product: { name: "SUSE Linux Enterprise Server for SAP Applications 15", product_id: "SUSE Linux Enterprise Server for SAP Applications 15", product_identification_helper: { cpe: "cpe:/o:suse:sles_sap:15", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "binutils-2.37-6.23.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", }, product_reference: "binutils-2.37-6.23.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-ESPOS", }, { category: "default_component_of", full_product_name: { name: "binutils-2.37-6.23.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", }, product_reference: "binutils-2.37-6.23.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-ESPOS", }, { category: "default_component_of", full_product_name: { name: "binutils-devel-2.37-6.23.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", }, product_reference: "binutils-devel-2.37-6.23.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-ESPOS", }, { category: "default_component_of", full_product_name: { name: "binutils-devel-2.37-6.23.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", }, product_reference: "binutils-devel-2.37-6.23.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-ESPOS", }, { category: "default_component_of", full_product_name: { name: "binutils-devel-32bit-2.37-6.23.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", }, product_reference: "binutils-devel-32bit-2.37-6.23.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-ESPOS", }, { category: "default_component_of", full_product_name: { name: "libctf-nobfd0-2.37-6.23.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", }, product_reference: "libctf-nobfd0-2.37-6.23.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-ESPOS", }, { category: "default_component_of", full_product_name: { name: "libctf-nobfd0-2.37-6.23.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", }, product_reference: "libctf-nobfd0-2.37-6.23.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-ESPOS", }, { category: "default_component_of", full_product_name: { name: "libctf0-2.37-6.23.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", }, product_reference: "libctf0-2.37-6.23.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-ESPOS", }, { category: "default_component_of", full_product_name: { name: "libctf0-2.37-6.23.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", }, product_reference: "libctf0-2.37-6.23.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-ESPOS", }, { category: "default_component_of", full_product_name: { name: "binutils-2.37-6.23.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", }, product_reference: "binutils-2.37-6.23.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "binutils-2.37-6.23.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", }, product_reference: "binutils-2.37-6.23.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "binutils-devel-2.37-6.23.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", }, product_reference: "binutils-devel-2.37-6.23.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "binutils-devel-2.37-6.23.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", }, product_reference: "binutils-devel-2.37-6.23.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "binutils-devel-32bit-2.37-6.23.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", }, product_reference: "binutils-devel-32bit-2.37-6.23.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libctf-nobfd0-2.37-6.23.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", }, product_reference: "libctf-nobfd0-2.37-6.23.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libctf-nobfd0-2.37-6.23.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", }, product_reference: "libctf-nobfd0-2.37-6.23.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libctf0-2.37-6.23.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", }, product_reference: "libctf0-2.37-6.23.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libctf0-2.37-6.23.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", }, product_reference: "libctf0-2.37-6.23.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "binutils-2.37-6.23.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", }, product_reference: "binutils-2.37-6.23.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "binutils-2.37-6.23.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", }, product_reference: "binutils-2.37-6.23.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "binutils-2.37-6.23.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", }, product_reference: "binutils-2.37-6.23.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "binutils-2.37-6.23.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", }, product_reference: "binutils-2.37-6.23.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "binutils-devel-2.37-6.23.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", }, product_reference: "binutils-devel-2.37-6.23.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "binutils-devel-2.37-6.23.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", }, product_reference: "binutils-devel-2.37-6.23.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "binutils-devel-2.37-6.23.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", }, product_reference: "binutils-devel-2.37-6.23.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "binutils-devel-2.37-6.23.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", }, product_reference: "binutils-devel-2.37-6.23.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "binutils-devel-32bit-2.37-6.23.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", }, product_reference: "binutils-devel-32bit-2.37-6.23.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libctf-nobfd0-2.37-6.23.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", }, product_reference: "libctf-nobfd0-2.37-6.23.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libctf-nobfd0-2.37-6.23.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", }, product_reference: "libctf-nobfd0-2.37-6.23.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libctf-nobfd0-2.37-6.23.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", }, product_reference: "libctf-nobfd0-2.37-6.23.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libctf-nobfd0-2.37-6.23.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", }, product_reference: "libctf-nobfd0-2.37-6.23.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libctf0-2.37-6.23.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", }, product_reference: "libctf0-2.37-6.23.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libctf0-2.37-6.23.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", }, product_reference: "libctf0-2.37-6.23.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libctf0-2.37-6.23.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", }, product_reference: "libctf0-2.37-6.23.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libctf0-2.37-6.23.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", }, product_reference: "libctf0-2.37-6.23.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "binutils-2.37-6.23.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15", product_id: "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", }, product_reference: "binutils-2.37-6.23.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 15", }, { category: "default_component_of", full_product_name: { name: "binutils-2.37-6.23.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15", product_id: "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", }, product_reference: "binutils-2.37-6.23.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 15", }, { category: "default_component_of", full_product_name: { name: "binutils-devel-2.37-6.23.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15", product_id: "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", }, product_reference: "binutils-devel-2.37-6.23.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 15", }, { category: "default_component_of", full_product_name: { name: "binutils-devel-2.37-6.23.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15", product_id: "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", }, product_reference: "binutils-devel-2.37-6.23.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 15", }, { category: "default_component_of", full_product_name: { name: "binutils-devel-32bit-2.37-6.23.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15", product_id: "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", }, product_reference: "binutils-devel-32bit-2.37-6.23.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 15", }, { category: "default_component_of", full_product_name: { name: "libctf-nobfd0-2.37-6.23.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15", product_id: "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", }, product_reference: "libctf-nobfd0-2.37-6.23.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 15", }, { category: "default_component_of", full_product_name: { name: "libctf-nobfd0-2.37-6.23.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15", product_id: "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", }, product_reference: "libctf-nobfd0-2.37-6.23.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 15", }, { category: "default_component_of", full_product_name: { name: "libctf0-2.37-6.23.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15", product_id: "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", }, product_reference: "libctf0-2.37-6.23.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 15", }, { category: "default_component_of", full_product_name: { name: "libctf0-2.37-6.23.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15", product_id: "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", }, product_reference: "libctf0-2.37-6.23.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 15", }, ], }, vulnerabilities: [ { cve: "CVE-2020-16590", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-16590", }, ], notes: [ { category: "general", text: "A double free vulnerability exists in the Binary File Descriptor (BFD) (aka libbrd) in GNU Binutils 2.35 in the process_symbol_table, as demonstrated in readelf, via a crafted file.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-16590", url: "https://www.suse.com/security/cve/CVE-2020-16590", }, { category: "external", summary: "SUSE Bug 1179898 for CVE-2020-16590", url: "https://bugzilla.suse.com/1179898", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 4, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.1", }, products: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-03-22T10:21:45Z", details: "low", }, ], title: "CVE-2020-16590", }, { cve: "CVE-2020-16591", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-16591", }, ], notes: [ { category: "general", text: "A Denial of Service vulnerability exists in the Binary File Descriptor (BFD) in GNU Binutils 2.35 due to an invalid read in process_symbol_table, as demonstrated in readeif.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-16591", url: "https://www.suse.com/security/cve/CVE-2020-16591", }, { category: "external", summary: "SUSE Bug 1179899 for CVE-2020-16591", url: "https://bugzilla.suse.com/1179899", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-03-22T10:21:45Z", details: "moderate", }, ], title: "CVE-2020-16591", }, { cve: "CVE-2020-16592", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-16592", }, ], notes: [ { category: "general", text: "A use after free issue exists in the Binary File Descriptor (BFD) library (aka libbfd) in GNU Binutils 2.34 in bfd_hash_lookup, as demonstrated in nm-new, that can cause a denial of service via a crafted file.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-16592", url: "https://www.suse.com/security/cve/CVE-2020-16592", }, { category: "external", summary: "SUSE Bug 1179900 for CVE-2020-16592", url: "https://bugzilla.suse.com/1179900", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-03-22T10:21:45Z", details: "moderate", }, ], title: "CVE-2020-16592", }, { cve: "CVE-2020-16593", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-16593", }, ], notes: [ { category: "general", text: "A Null Pointer Dereference vulnerability exists in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.35, in scan_unit_for_symbols, as demonstrated in addr2line, that can cause a denial of service via a crafted file.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-16593", url: "https://www.suse.com/security/cve/CVE-2020-16593", }, { category: "external", summary: "SUSE Bug 1179901 for CVE-2020-16593", url: "https://bugzilla.suse.com/1179901", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-03-22T10:21:45Z", details: "moderate", }, ], title: "CVE-2020-16593", }, { cve: "CVE-2020-16598", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-16598", }, ], notes: [ { category: "general", text: "** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-16598", url: "https://www.suse.com/security/cve/CVE-2020-16598", }, { category: "external", summary: "SUSE Bug 1179902 for CVE-2020-16598", url: "https://bugzilla.suse.com/1179902", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-03-22T10:21:45Z", details: "moderate", }, ], title: "CVE-2020-16598", }, { cve: "CVE-2020-16599", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-16599", }, ], notes: [ { category: "general", text: "A Null Pointer Dereference vulnerability exists in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.35, in _bfd_elf_get_symbol_version_string, as demonstrated in nm-new, that can cause a denial of service via a crafted file.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-16599", url: "https://www.suse.com/security/cve/CVE-2020-16599", }, { category: "external", summary: "SUSE Bug 1179903 for CVE-2020-16599", url: "https://bugzilla.suse.com/1179903", }, { category: "external", summary: "SUSE Bug 1206080 for CVE-2020-16599", url: "https://bugzilla.suse.com/1206080", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 4, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.1", }, products: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-03-22T10:21:45Z", details: "low", }, ], title: "CVE-2020-16599", }, { cve: "CVE-2020-35448", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-35448", }, ], notes: [ { category: "general", text: "An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.35.1. A heap-based buffer over-read can occur in bfd_getl_signed_32 in libbfd.c because sh_entsize is not validated in _bfd_elf_slurp_secondary_reloc_section in elf.c.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-35448", url: "https://www.suse.com/security/cve/CVE-2020-35448", }, { category: "external", summary: "SUSE Bug 1184794 for CVE-2020-35448", url: "https://bugzilla.suse.com/1184794", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 3.3, baseSeverity: "LOW", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L", version: "3.1", }, products: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-03-22T10:21:45Z", details: "moderate", }, ], title: "CVE-2020-35448", }, { cve: "CVE-2020-35493", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-35493", }, ], notes: [ { category: "general", text: "A flaw exists in binutils in bfd/pef.c. An attacker who is able to submit a crafted PEF file to be parsed by objdump could cause a heap buffer overflow -> out-of-bounds read that could lead to an impact to application availability. This flaw affects binutils versions prior to 2.34.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-35493", url: "https://www.suse.com/security/cve/CVE-2020-35493", }, { category: "external", summary: "SUSE Bug 1180451 for CVE-2020-35493", url: "https://bugzilla.suse.com/1180451", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-03-22T10:21:45Z", details: "moderate", }, ], title: "CVE-2020-35493", }, { cve: "CVE-2020-35496", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-35496", }, ], notes: [ { category: "general", text: "There's a flaw in bfd_pef_scan_start_address() of bfd/pef.c in binutils which could allow an attacker who is able to submit a crafted file to be processed by objdump to cause a NULL pointer dereference. The greatest threat of this flaw is to application availability. This flaw affects binutils versions prior to 2.34.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-35496", url: "https://www.suse.com/security/cve/CVE-2020-35496", }, { category: "external", summary: "SUSE Bug 1180454 for CVE-2020-35496", url: "https://bugzilla.suse.com/1180454", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-03-22T10:21:45Z", details: "moderate", }, ], title: "CVE-2020-35496", }, { cve: "CVE-2020-35507", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-35507", }, ], notes: [ { category: "general", text: "There's a flaw in bfd_pef_parse_function_stubs of bfd/pef.c in binutils in versions prior to 2.34 which could allow an attacker who is able to submit a crafted file to be processed by objdump to cause a NULL pointer dereference. The greatest threat of this flaw is to application availability.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-35507", url: "https://www.suse.com/security/cve/CVE-2020-35507", }, { category: "external", summary: "SUSE Bug 1180461 for CVE-2020-35507", url: "https://bugzilla.suse.com/1180461", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-03-22T10:21:45Z", details: "moderate", }, ], title: "CVE-2020-35507", }, { cve: "CVE-2021-20197", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-20197", }, ], notes: [ { category: "general", text: "There is an open race window when writing output in the following utilities in GNU binutils version 2.35 and earlier:ar, objcopy, strip, ranlib. When these utilities are run as a privileged user (presumably as part of a script updating binaries across different users), an unprivileged user can trick these utilities into getting ownership of arbitrary files through a symlink.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-20197", url: "https://www.suse.com/security/cve/CVE-2021-20197", }, { category: "external", summary: "SUSE Bug 1181452 for CVE-2021-20197", url: "https://bugzilla.suse.com/1181452", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N", version: "3.1", }, products: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-03-22T10:21:45Z", details: "moderate", }, ], title: "CVE-2021-20197", }, { cve: "CVE-2021-20284", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-20284", }, ], notes: [ { category: "general", text: "A flaw was found in GNU Binutils 2.35.1, where there is a heap-based buffer overflow in _bfd_elf_slurp_secondary_reloc_section in elf.c due to the number of symbols not calculated correctly. The highest threat from this vulnerability is to system availability.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-20284", url: "https://www.suse.com/security/cve/CVE-2021-20284", }, { category: "external", summary: "SUSE Bug 1183511 for CVE-2021-20284", url: "https://bugzilla.suse.com/1183511", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 4.7, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-03-22T10:21:45Z", details: "moderate", }, ], title: "CVE-2021-20284", }, { cve: "CVE-2021-20294", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-20294", }, ], notes: [ { category: "general", text: "A flaw was found in binutils readelf 2.35 program. An attacker who is able to convince a victim using readelf to read a crafted file could trigger a stack buffer overflow, out-of-bounds write of arbitrary data supplied by the attacker. The highest impact of this flaw is to confidentiality, integrity, and availability.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-20294", url: "https://www.suse.com/security/cve/CVE-2021-20294", }, { category: "external", summary: "SUSE Bug 1184519 for CVE-2021-20294", url: "https://bugzilla.suse.com/1184519", }, { category: "external", summary: "SUSE Bug 1196680 for CVE-2021-20294", url: "https://bugzilla.suse.com/1196680", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-03-22T10:21:45Z", details: "moderate", }, ], title: "CVE-2021-20294", }, { cve: "CVE-2021-3487", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-3487", }, ], notes: [ { category: "general", text: "** REJECT ** Non Security Issue. See the binutils security policy for more details, https://sourceware.org/cgit/binutils-gdb/tree/binutils/SECURITY.txt", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-3487", url: "https://www.suse.com/security/cve/CVE-2021-3487", }, { category: "external", summary: "SUSE Bug 1184620 for CVE-2021-3487", url: "https://bugzilla.suse.com/1184620", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libctf0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:binutils-devel-32bit-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf-nobfd0-2.37-6.23.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libctf0-2.37-6.23.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-03-22T10:21:45Z", details: "moderate", }, ], title: "CVE-2021-3487", }, ], }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
Title of the comment
Description of the comment
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.