Upgrade RHEL:8 binutils-devel to version 0:2.30-113.el8_6.2 or higher. This issue was patched in RHSA-2023:7394 .

libctf0 vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the libctf0 package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
L Use of Uninitialized Resource	<2.41-150100.7.46.1
L CVE-2023-25587	<2.41-150100.7.46.1
L Use of Uninitialized Resource	<2.41-150100.7.46.1
L Out-of-bounds Write	<2.41-150100.7.46.1
L CVE-2023-2222	<2.41-150100.7.46.1
L Out-of-bounds Write	<2.41-150100.7.46.1
M Memory Leak	<2.41-150100.7.46.1
L Buffer Overflow	<2.41-150100.7.46.1
L Allocation of Resources Without Limits or Throttling	<2.41-150100.7.46.1
H CVE-2022-47696	<2.41-150100.7.46.1
M Resource Exhaustion	<2.41-150100.7.46.1
H CVE-2022-47695	<2.41-150100.7.46.1
H Out-of-bounds Write	<2.41-150100.7.46.1
H Out-of-bounds Write	<2.41-150100.7.46.1
H Out-of-bounds Read	<2.41-150100.7.46.1
M NULL Pointer Dereference	<2.41-150100.7.46.1
M NULL Pointer Dereference	<2.41-150100.7.46.1
L Reachable Assertion	<2.41-150100.7.46.1
L Out-of-bounds Write	<2.41-150100.7.46.1
H CVE-2020-19726	<2.41-150100.7.46.1