Gnu Binutils vulnerabilities

CVE-2025-1153 [MEDIUM] CWE-119 CVE-2025-1153: A vulnerability classified as problematic was found in GNU Binutils 2.43/2.44. Affected by this vuln A vulnerability classified as problematic was found in GNU Binutils 2.43/2.44. Affected by this vulnerability is the function bfd_set_format of the file format.c. The manipulation leads to memory corruption. The attack can be launched remotely. The complexity of an attack is rather high. The exploitation appears to be difficult. Upgrading to version 2

CVE-2017-9042 [HIGH] CWE-704 CVE-2017-9042: readelf.c in GNU Binutils 2017-04-12 has a "cannot be represented in type long" issue, which might a readelf.c in GNU Binutils 2017-04-12 has a "cannot be represented in type long" issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted ELF file.

CVE-2017-17125 [HIGH] CWE-125 CVE-2017-17125: nm.c and objdump.c in GNU Binutils 2.29.1 mishandle certain global symbols, which allows remote atta nm.c and objdump.c in GNU Binutils 2.29.1 mishandle certain global symbols, which allows remote attackers to cause a denial of service (_bfd_elf_get_symbol_version_string buffer over-read and application crash) or possibly have unspecified other impact via a crafted ELF file.

CVE-2017-14333 [HIGH] CWE-190 CVE-2017-14333: The process_version_sections function in readelf.c in GNU Binutils 2.29 allows attackers to cause a The process_version_sections function in readelf.c in GNU Binutils 2.29 allows attackers to cause a denial of service (Integer Overflow, and hang because of a time-consuming loop) or possibly have unspecified other impact via a crafted binary file with invalid values of ent.vn_next, during "readelf -a" execution.

CVE-2022-47695 [HIGH] CWE-400 CVE-2022-47695: An issue was discovered Binutils objdump before 2.39.3 allows attackers to cause a denial of service An issue was discovered Binutils objdump before 2.39.3 allows attackers to cause a denial of service or other unspecified impacts via function bfd_mach_o_get_synthetic_symtab in match-o.c.

CVE-2023-1972 [MEDIUM] CWE-119 CVE-2023-1972: A potential heap based buffer overflow was found in _bfd_elf_slurp_version_tables() in bfd/elf.c. Th A potential heap based buffer overflow was found in _bfd_elf_slurp_version_tables() in bfd/elf.c. This may lead to loss of availability.

CVE-2017-14745 [HIGH] CWE-190 CVE-2017-14745: The *_get_synthetic_symtab functions in the Binary File Descriptor (BFD) library (aka libbfd), as di The *_get_synthetic_symtab functions in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, interpret a -1 value as a sorting count instead of an error flag, which allows remote attackers to cause a denial of service (integer overflow and application crash) or possibly have unspecified other impact via a crafted

CVE-2022-47696 [HIGH] CWE-400 CVE-2022-47696: An issue was discovered Binutils objdump before 2.39.3 allows attackers to cause a denial of service An issue was discovered Binutils objdump before 2.39.3 allows attackers to cause a denial of service or other unspecified impacts via function compare_symbols.

CVE-2025-1176 [MEDIUM] CWE-119 CVE-2025-1176: A vulnerability was found in GNU Binutils 2.43 and classified as critical. This issue affects the fu A vulnerability was found in GNU Binutils 2.43 and classified as critical. This issue affects the function _bfd_elf_gc_mark_rsec of the file elflink.c of the component ld. The manipulation leads to heap-based buffer overflow. The attack may be initiated remotely. The complexity of an attack is rather high. The exploitation is known to be difficult. Th

CVE-2018-20712 [MEDIUM] CWE-125 CVE-2018-20712: A heap-based buffer over-read exists in the function d_expression_1 in cp-demangle.c in GNU libibert A heap-based buffer over-read exists in the function d_expression_1 in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31.1. A crafted input can cause segmentation faults, leading to denial-of-service, as demonstrated by c++filt.

CVE-2021-3549 [HIGH] CWE-119 CVE-2021-3549: An out of bounds flaw was found in GNU binutils objdump utility version 2.36. An attacker could use An out of bounds flaw was found in GNU binutils objdump utility version 2.36. An attacker could use this flaw and pass a large section to avr_elf32_load_records_from_section() probably resulting in a crash or in some cases memory corruption. The highest threat from this vulnerability is to integrity as well as system availability.

CVE-2019-17451 [MEDIUM] CWE-190 CVE-2019-17451: An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an integer overflow leading to a SEGV in _bfd_dwarf2_find_nearest_line in dwarf2.c, as demonstrated by nm.

CVE-2021-32256 [MEDIUM] CWE-787 CVE-2021-32256: An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.36. It is a stack-overflo An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.36. It is a stack-overflow issue in demangle_type in rust-demangle.c.

CVE-2005-4808 [HIGH] CVE-2005-4808: Buffer overflow in reset_vars in config/tc-crx.c in the GNU as (gas) assembler in Free Software Foun Buffer overflow in reset_vars in config/tc-crx.c in the GNU as (gas) assembler in Free Software Foundation GNU Binutils before 20050714 allows user-assisted attackers to have an unknown impact via a crafted .s file.

CVE-2025-11495 [MEDIUM] CWE-119 CVE-2025-11495: A vulnerability was determined in GNU Binutils 2.45. The affected element is the function elf_x86_64 A vulnerability was determined in GNU Binutils 2.45. The affected element is the function elf_x86_64_relocate_section of the file elf64-x86-64.c of the component Linker. This manipulation causes heap-based buffer overflow. The attack can only be executed locally. The exploit has been publicly disclosed and may be utilized. Patch name: 6b21c8b2ecfef5

CVE-2025-1147 [MEDIUM] CWE-119 CVE-2025-1147: A vulnerability has been found in GNU Binutils 2.43 and classified as problematic. Affected by this A vulnerability has been found in GNU Binutils 2.43 and classified as problematic. Affected by this vulnerability is the function __sanitizer::internal_strlen of the file binutils/nm.c of the component nm. The manipulation of the argument const leads to buffer overflow. The attack can be launched remotely. The complexity of an attack is rather high. Th

CVE-2017-12967 [MEDIUM] CWE-125 CVE-2017-12967: The getsym function in tekhex.c in the Binary File Descriptor (BFD) library (aka libbfd), as distrib The getsym function in tekhex.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (stack-based buffer over-read and application crash) via a malformed tekhex binary.

CVE-2025-1182 [MEDIUM] CWE-119 CVE-2025-1182: A vulnerability, which was classified as critical, was found in GNU Binutils 2.43. Affected is the f A vulnerability, which was classified as critical, was found in GNU Binutils 2.43. Affected is the function bfd_elf_reloc_symbol_deleted_p of the file bfd/elflink.c of the component ld. The manipulation leads to memory corruption. It is possible to launch the attack remotely. The complexity of an attack is rather high. The exploitability is told to be

CVE-2014-8738 [MEDIUM] CWE-119 CVE-2014-8738: The _bfd_slurp_extended_name_table function in bfd/archive.c in GNU binutils 2.24 and earlier allows The _bfd_slurp_extended_name_table function in bfd/archive.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service (invalid write, segmentation fault, and crash) via a crafted extended name table in an archive.

CVE-2014-8484 [MEDIUM] CWE-119 CVE-2014-8484: The srec_scan function in bfd/srec.c in libdbfd in GNU binutils before 2.25 allows remote attackers The srec_scan function in bfd/srec.c in libdbfd in GNU binutils before 2.25 allows remote attackers to cause a denial of service (out-of-bounds read) via a small S-record.