Gnu Binutils vulnerabilities

CVE-2025-69647 [MEDIUM] CWE-835 CVE-2025-69647: GNU Binutils thru 2.45.1 readelf contains a denial-of-service vulnerability when processing a crafte GNU Binutils thru 2.45.1 readelf contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF loclists data. A logic flaw in the DWARF parsing code can cause readelf to repeatedly print the same table output without making forward progress, resulting in an unbounded output loop that never terminates unless externa

CVE-2025-69648 [MEDIUM] CWE-835 CVE-2025-69648: GNU Binutils thru 2.45.1 readelf contains a denial-of-service vulnerability when processing a crafte GNU Binutils thru 2.45.1 readelf contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF .debug_rnglists data. A logic flaw in the DWARF parsing path causes readelf to repeatedly print the same warning message without making forward progress, resulting in a non-terminating output loop that requires manual int

CVE-2025-69649 [HIGH] CWE-476 CVE-2025-69649: GNU Binutils thru 2.46 readelf contains a null pointer dereference vulnerability when processing a c GNU Binutils thru 2.46 readelf contains a null pointer dereference vulnerability when processing a crafted ELF binary with malformed header fields. During relocation processing, an invalid or null section pointer may be passed into display_relocations(), resulting in a segmentation fault (SIGSEGV) and abrupt termination. No evidence of memory corrupti

CVE-2025-69650 [HIGH] CWE-415 CVE-2025-69650: GNU Binutils thru 2.46 readelf contains a double free vulnerability when processing a crafted ELF bi GNU Binutils thru 2.46 readelf contains a double free vulnerability when processing a crafted ELF binary with malformed relocation data. During GOT relocation handling, dump_relocations may return early without initializing the all_relocations array. As a result, process_got_section_contents() may pass an uninitialized r_symbol pointer to free(), lead

CVE-2025-69644 [MEDIUM] CWE-400 CVE-2025-69644: An issue was discovered in Binutils before 2.46. The objdump contains a denial-of-service vulnerabil An issue was discovered in Binutils before 2.46. The objdump contains a denial-of-service vulnerability when processing a crafted binary with malformed debug information. A logic flaw in the handling of DWARF location list headers can cause objdump to enter an unbounded loop and produce endless output until manually interrupted. This issue affects v

CVE-2025-69651 [MEDIUM] CWE-476 CVE-2025-69651: GNU Binutils thru 2.46 readelf contains a vulnerability that leads to an invalid pointer free when p GNU Binutils thru 2.46 readelf contains a vulnerability that leads to an invalid pointer free when processing a crafted ELF binary with malformed relocation or symbol data. If dump_relocations returns early due to parsing errors, the internal all_relocations array may remain partially uninitialized. Later, process_got_section_contents() may attempt

CVE-2025-69646 [MEDIUM] CWE-400 CVE-2025-69646: Binutils objdump contains a denial-of-service vulnerability when processing a crafted binary with ma Binutils objdump contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF debug_rnglists data. A logic error in the handling of the debug_rnglists header can cause objdump to repeatedly print the same warning message and fail to terminate, resulting in an unbounded logging loop until the process is interrupted

CVE-2025-69645 [MEDIUM] CWE-400 CVE-2025-69645: Binutils objdump contains a denial-of-service vulnerability when processing a crafted binary with ma Binutils objdump contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF debug information. A logic error in the handling of DWARF compilation units can result in an invalid offset_size value being used inside byte_get_little_endian, leading to an abort (SIGABRT). The issue was observed in binutils 2.44. A lo

CVE-2025-69652 [MEDIUM] CWE-460 CVE-2025-69652: GNU Binutils thru 2.46 readelf contains a vulnerability that leads to an abort (SIGABRT) when proces GNU Binutils thru 2.46 readelf contains a vulnerability that leads to an abort (SIGABRT) when processing a crafted ELF binary with malformed DWARF abbrev or debug information. Due to incomplete state cleanup in process_debug_info(), an invalid debug_info_p state may propagate into DWARF attribute parsing routines. When certain malformed attributes r

CVE-2025-66865 [HIGH] CWE-121 CVE-2025-66865: An issue was discovered in function d_print_comp_inner in file cp-demangle.c in BinUtils 2.26 allows An issue was discovered in function d_print_comp_inner in file cp-demangle.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file.

CVE-2025-66866 [HIGH] CWE-20 CVE-2025-66866: An issue was discovered in function d_abi_tags in file cp-demangle.c in BinUtils 2.26 allows attacke An issue was discovered in function d_abi_tags in file cp-demangle.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file.

CVE-2025-66862 [HIGH] CWE-122 CVE-2025-66862: A buffer overflow vulnerability in function gnu_special in file cplus-dem.c in BinUtils 2.26 allows A buffer overflow vulnerability in function gnu_special in file cplus-dem.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file.

CVE-2025-66863 [HIGH] CWE-400 CVE-2025-66863: An issue was discovered in function d_discriminator in file cp-demangle.c in BinUtils 2.26 allows at An issue was discovered in function d_discriminator in file cp-demangle.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file.

CVE-2025-66864 [HIGH] CWE-20 CVE-2025-66864: An issue was discovered in function d_print_comp_inner in file cp-demangle.c in BinUtils 2.26 allows An issue was discovered in function d_print_comp_inner in file cp-demangle.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file.

CVE-2025-66861 [LOW] CWE-400 CVE-2025-66861: An issue was discovered in function d_unqualified_name in file cp-demangle.c in BinUtils 2.26 allowi An issue was discovered in function d_unqualified_name in file cp-demangle.c in BinUtils 2.26 allowing attackers to cause a denial of service via crafted PE file.

CVE-2025-11840 [MEDIUM] CWE-119 CVE-2025-11840: A weakness has been identified in GNU Binutils 2.45. The affected element is the function vfinfo of A weakness has been identified in GNU Binutils 2.45. The affected element is the function vfinfo of the file ldmisc.c. Executing a manipulation can lead to out-of-bounds read. The attack can only be executed locally. The exploit has been made available to the public and could be used for attacks. This patch is called 16357. It is best practice to app

CVE-2025-11839 [MEDIUM] CWE-252 CVE-2025-11839: A security flaw has been discovered in GNU Binutils 2.45. Impacted is the function tg_tag_type of th A security flaw has been discovered in GNU Binutils 2.45. Impacted is the function tg_tag_type of the file prdbg.c. Performing a manipulation results in unchecked return value. The attack needs to be approached locally. The exploit has been released to the public and may be used for attacks.

CVE-2025-11495 [MEDIUM] CWE-119 CVE-2025-11495: A vulnerability was determined in GNU Binutils 2.45. The affected element is the function elf_x86_64 A vulnerability was determined in GNU Binutils 2.45. The affected element is the function elf_x86_64_relocate_section of the file elf64-x86-64.c of the component Linker. This manipulation causes heap-based buffer overflow. The attack can only be executed locally. The exploit has been publicly disclosed and may be utilized. Patch name: 6b21c8b2ecfef5

CVE-2025-11494 [MEDIUM] CWE-119 CVE-2025-11494: A vulnerability was found in GNU Binutils 2.45. Impacted is the function _bfd_x86_elf_late_size_sect A vulnerability was found in GNU Binutils 2.45. Impacted is the function _bfd_x86_elf_late_size_sections of the file bfd/elfxx-x86.c of the component Linker. The manipulation results in out-of-bounds read. The attack needs to be approached locally. The exploit has been made public and could be used. The patch is identified as b6ac5a8a5b82f0ae6a4642c

CVE-2025-11412 [MEDIUM] CWE-119 CVE-2025-11412: A vulnerability has been found in GNU Binutils 2.45. This impacts the function bfd_elf_gc_record_vte A vulnerability has been found in GNU Binutils 2.45. This impacts the function bfd_elf_gc_record_vtentry of the file bfd/elflink.c of the component Linker. The manipulation leads to out-of-bounds read. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The identifier of the patch is 047435