4 matches found
CLSA-2026-1776083558 binutils: Fix of 4 CVEs
CVE-2025-5244: fix NULL deref in elfgcsweep on empty section group - CVE-2025-5245: fix NULL deref in debugtypesamep for incomplete enum types - CVE-2026-3441, CVE-2026-3442: fix xcofflink out-of-bounds accesses...
CVE-2026-3442
A flaw was found in GNU Binutils. This vulnerability, a heap-based buffer overflow, specifically an out-of-bounds read, exists in the bfd linker component. An attacker could exploit this by convincing a user to process a specially crafted malicious XCOFF object file. Successful exploitation may...
CVE-2026-3442
CVE-2026-3442 is a reported heap-based buffer overflow in the GNU Binutils bfd linker, caused by a missing r_symndx bounds check in xcoff_link_add_symbols. Exploitation would involve processing a crafted XCOFF object file and could lead to information disclosure or an application crash/DoS. Multi...
Linux Distros Unpatched Vulnerability : CVE-2026-3442
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in GNU Binutils. This vulnerability, a heap-based buffer overflow, specifically an out- of-bounds read, exists in the bfd linker component. An...