CVE-2021-37322

HIGH

GNU Binutils < 2.32 - Use After Free

Title source: rule

Description

GCC c++filt v2.26 was discovered to contain a use-after-free vulnerability via the component cplus-dem.c.

References (1)

Scores

CVSS v3 7.8
EPSS 0.0024
EPSS Percentile 47.0%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Classification

CWE
CWE-416
Status published

Affected Products (2)

gnu/binutils < 2.32
gnu/gcc < 10.1

Timeline

Published Nov 18, 2021
Tracked Since Feb 18, 2026