Debian Binutils vulnerabilities

CVE-2025-11413 [MEDIUM] CVE-2025-11413: binutils - A vulnerability was found in GNU Binutils 2.45. Affected is the function elf_lin... A vulnerability was found in GNU Binutils 2.45. Affected is the function elf_link_add_object_symbols of the file bfd/elflink.c of the component Linker. The manipulation results in out-of-bounds read. The attack needs to be approached locally. The exploit has been made public and could be used. Upgrading to version 2.46 is able to address this issue. The patch is

CVE-2025-1179 [LOW] CVE-2025-1179: binutils - A vulnerability was found in GNU Binutils 2.43. It has been rated as critical. A... A vulnerability was found in GNU Binutils 2.43. It has been rated as critical. Affected by this issue is the function bfd_putl64 of the file bfd/libbfd.c of the component ld. The manipulation leads to memory corruption. The attack may be launched remotely. The complexity of an attack is rather high. The exploitation is known to be difficult. The exploit has been discl

CVE-2025-69648 [MEDIUM] CVE-2025-69648: binutils - GNU Binutils thru 2.45.1 readelf contains a denial-of-service vulnerability when... GNU Binutils thru 2.45.1 readelf contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF .debug_rnglists data. A logic flaw in the DWARF parsing path causes readelf to repeatedly print the same warning message without making forward progress, resulting in a non-terminating output loop that requires manual interruption. No

CVE-2025-69647 [MEDIUM] CVE-2025-69647: binutils - GNU Binutils thru 2.45.1 readelf contains a denial-of-service vulnerability when... GNU Binutils thru 2.45.1 readelf contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF loclists data. A logic flaw in the DWARF parsing code can cause readelf to repeatedly print the same table output without making forward progress, resulting in an unbounded output loop that never terminates unless externally interrupte

CVE-2025-11839 [MEDIUM] CVE-2025-11839: binutils - A security flaw has been discovered in GNU Binutils 2.45. Impacted is the functi... A security flaw has been discovered in GNU Binutils 2.45. Impacted is the function tg_tag_type of the file prdbg.c. Performing a manipulation results in unchecked return value. The attack needs to be approached locally. The exploit has been released to the public and may be used for attacks. Scope: local bookworm: open bullseye: open forky: resolved (fixed in 2.4

CVE-2025-11414 [MEDIUM] CVE-2025-11414: binutils - A vulnerability was determined in GNU Binutils 2.45. Affected by this vulnerabil... A vulnerability was determined in GNU Binutils 2.45. Affected by this vulnerability is the function get_link_hash_entry of the file bfd/elflink.c of the component Linker. This manipulation causes out-of-bounds read. The attack can only be executed locally. The exploit has been publicly disclosed and may be utilized. Upgrading to version 2.46 addresses this issue.

CVE-2025-66861 [LOW] CVE-2025-66861: binutils - An issue was discovered in function d_unqualified_name in file cp-demangle.c in ... An issue was discovered in function d_unqualified_name in file cp-demangle.c in BinUtils 2.26 allowing attackers to cause a denial of service via crafted PE file. Scope: local bookworm: open bullseye: open forky: open sid: open trixie: open

CVE-2025-1178 [MEDIUM] CVE-2025-1178: binutils - A vulnerability was found in GNU Binutils 2.43. It has been declared as problema... A vulnerability was found in GNU Binutils 2.43. It has been declared as problematic. Affected by this vulnerability is the function bfd_putl64 of the file libbfd.c of the component ld. The manipulation leads to memory corruption. The attack can be launched remotely. The complexity of an attack is rather high. The exploitation appears to be difficult. The exploit ha

CVE-2025-69651 [MEDIUM] CVE-2025-69651: binutils - GNU Binutils thru 2.46 readelf contains a vulnerability that leads to an invalid... GNU Binutils thru 2.46 readelf contains a vulnerability that leads to an invalid pointer free when processing a crafted ELF binary with malformed relocation or symbol data. If dump_relocations returns early due to parsing errors, the internal all_relocations array may remain partially uninitialized. Later, process_got_section_contents() may attempt to free an inv

CVE-2024-53589 [HIGH] CVE-2024-53589: binutils - GNU objdump 2.43 is vulnerable to Buffer Overflow in the BFD (Binary File Descri... GNU objdump 2.43 is vulnerable to Buffer Overflow in the BFD (Binary File Descriptor) library's handling of tekhex format files. Scope: local bookworm: open bullseye: open forky: resolved (fixed in 2.44-1) sid: resolved (fixed in 2.44-1) trixie: resolved (fixed in 2.44-1)

CVE-2024-57360 [MEDIUM] CVE-2024-57360: binutils - https://www.gnu.org/software/binutils/ nm >=2.43 is affected by: Incorrect Acces... https://www.gnu.org/software/binutils/ nm >=2.43 is affected by: Incorrect Access Control. The type of exploitation is: local. The component is: `nm --without-symbol-version` function. Scope: local bookworm: open bullseye: open forky: resolved (fixed in 2.43.50.20241221-1) sid: resolved (fixed in 2.43.50.20241221-1) trixie: resolved (fixed in 2.43.50.20241221-1)

CVE-2023-25588 [MEDIUM] CVE-2023-25588: binutils - A flaw was found in Binutils. The field `the_bfd` of `asymbol`struct is uninitia... A flaw was found in Binutils. The field `the_bfd` of `asymbol`struct is uninitialized in the `bfd_mach_o_get_synthetic_symtab` function, which may lead to an application crash and local denial of service. Scope: local bookworm: resolved (fixed in 2.39.50.20221208-1) bullseye: open forky: resolved (fixed in 2.39.50.20221208-1) sid: resolved (fixed in 2.39.50.20221

CVE-2023-25586 [MEDIUM] CVE-2023-25586: binutils - A flaw was found in Binutils. A logic fail in the bfd_init_section_decompress_st... A flaw was found in Binutils. A logic fail in the bfd_init_section_decompress_status function may lead to the use of an uninitialized variable that can cause a crash and local denial of service. Scope: local bookworm: resolved (fixed in 2.39.50.20221208-1) bullseye: open forky: resolved (fixed in 2.39.50.20221208-1) sid: resolved (fixed in 2.39.50.20221208-1) tri

CVE-2023-25584 [MEDIUM] CVE-2023-25584: binutils - An out-of-bounds read flaw was found in the parse_module function in bfd/vms-alp... An out-of-bounds read flaw was found in the parse_module function in bfd/vms-alpha.c in Binutils. Scope: local bookworm: resolved (fixed in 2.39.50.20221224-1) bullseye: open forky: resolved (fixed in 2.39.50.20221224-1) sid: resolved (fixed in 2.39.50.20221224-1) trixie: resolved (fixed in 2.39.50.20221224-1)

CVE-2023-1579 [HIGH] CVE-2023-1579: binutils - Heap based buffer overflow in binutils-gdb/bfd/libbfd.c in bfd_getl64. Heap based buffer overflow in binutils-gdb/bfd/libbfd.c in bfd_getl64. Scope: local bookworm: resolved (fixed in 2.40-2) bullseye: open forky: resolved (fixed in 2.40-2) sid: resolved (fixed in 2.40-2) trixie: resolved (fixed in 2.40-2)

CVE-2023-25585 [MEDIUM] CVE-2023-25585: binutils - A flaw was found in Binutils. The use of an uninitialized field in the struct mo... A flaw was found in Binutils. The use of an uninitialized field in the struct module *module may lead to application crash and local denial of service. Scope: local bookworm: resolved (fixed in 2.39.50.20221224-1) bullseye: open forky: resolved (fixed in 2.39.50.20221224-1) sid: resolved (fixed in 2.39.50.20221224-1) trixie: resolved (fixed in 2.39.50.20221224-1)

CVE-2023-1972 [MEDIUM] CVE-2023-1972: binutils - A potential heap based buffer overflow was found in _bfd_elf_slurp_version_table... A potential heap based buffer overflow was found in _bfd_elf_slurp_version_tables() in bfd/elf.c. This may lead to loss of availability. Scope: local bookworm: open bullseye: open forky: resolved (fixed in 2.41-1) sid: resolved (fixed in 2.41-1) trixie: resolved (fixed in 2.41-1)

CVE-2022-47010 [MEDIUM] CVE-2022-47010: binutils - An issue was discovered function pr_function_type in prdbg.c in Binutils 2.34 th... An issue was discovered function pr_function_type in prdbg.c in Binutils 2.34 thru 2.38, allows attackers to cause a denial of service due to memory leaks. Scope: local bookworm: resolved (fixed in 2.38.50.20220627-1) bullseye: open forky: resolved (fixed in 2.38.50.20220627-1) sid: resolved (fixed in 2.38.50.20220627-1) trixie: resolved (fixed in 2.38.50.2022062

CVE-2022-48064 [MEDIUM] CVE-2022-48064: binutils - GNU Binutils before 2.40 was discovered to contain an excessive memory consumpti... GNU Binutils before 2.40 was discovered to contain an excessive memory consumption vulnerability via the function bfd_dwarf2_find_nearest_line_with_alt at dwarf2.c. The attacker could supply a crafted ELF file and cause a DNS attack. Scope: local bookworm: resolved (fixed in 2.40-2) bullseye: open forky: resolved (fixed in 2.40-2) sid: resolved (fixed in 2.40-2)

CVE-2022-35206 [MEDIUM] CVE-2022-35206: binutils - Null pointer dereference vulnerability in Binutils readelf 2.38.50 via function ... Null pointer dereference vulnerability in Binutils readelf 2.38.50 via function read_and_display_attr_value in file dwarf.c. Scope: local bookworm: resolved (fixed in 2.38.50.20220627-1) bullseye: open forky: resolved (fixed in 2.38.50.20220627-1) sid: resolved (fixed in 2.38.50.20220627-1) trixie: resolved (fixed in 2.38.50.20220627-1)