Astra Linux - уязвимость в binutils

A vulnerability has been discovered in GNU Binutils 2.45. This vulnerability affects the function bfdelfgcrecordvtentry in the file bfd/elflink.c of the Linker component. Manipulation of this function can lead to out-of-bounds reading. Access to local resources is required to carry out this attac...

CLSA-2026-1776177493 Fix CVE(s): CVE-2025-11082

SECURITY UPDATE: fix heap-based buffer overflow in bfdelfparseehframe - debian/patches/CVE-2025-11082.patch: add bounds check before reading buf1 in the legacy "eh" CIE path - CVE-2025-11082...

Unity Linux 20.1070e Security Update: binutils (UTSA-2026-007090)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007090 advisory. A vulnerability, which was classified as problematic, has been found in GNU Binutils 2.45. Affected by this issue is the function bfdelfsetgroupcontents of the file...

Siemens S7-1500 NULL Pointer Dereference (CVE-2025-8224)

A vulnerability has been found in GNU Binutils 2.44 and classified as problematic. This vulnerability affects the function bfdelfgetstrsection of the file bfd/elf.c of the component BFD Library. The manipulation leads to null pointer dereference. Local access is required to approach this attack...

CLEANSTART-2026-HF39630 potential heap based buffer overflow was found in _bfd_elf_slurp_version_tables() in bfd/elf

Multiple security vulnerabilities affect the $pkgname-$CTARGETARCH package. A potential heap based buffer overflow was found in bfdelfslurpversiontables in bfd/elf. See references for individual vulnerability details...

Medium: binutils

Issue Overview: A vulnerability has been found in GNU Binutils 2.45. This impacts the function bfdelfgcrecordvtentry of the file bfd/elflink.c of the component Linker. The manipulation leads to out-of-bounds read. Local access is required to approach this attack. The exploit has been disclosed to...

AZL-68397 CVE-2025-11414 affecting package gdb for versions less than 11.2-10

A vulnerability was determined in GNU Binutils 2.45. Affected by this vulnerability is the function getlinkhashentry of the file bfd/elflink.c of the component Linker. This manipulation causes out-of-bounds read. The attack can only be executed locally. The exploit has been publicly disclosed and...

UBUNTU-CVE-2025-11414

A vulnerability was determined in GNU Binutils 2.45. Affected by this vulnerability is the function getlinkhashentry of the file bfd/elflink.c of the component Linker. This manipulation causes out-of-bounds read. The attack can only be executed locally. The exploit has been publicly disclosed and...

AZL-68394 CVE-2025-11412 affecting package gdb for versions less than 11.2-10

A vulnerability has been found in GNU Binutils 2.45. This impacts the function bfdelfgcrecordvtentry of the file bfd/elflink.c of the component Linker. The manipulation leads to out-of-bounds read. Local access is required to approach this attack. The exploit has been disclosed to the public and...

UBUNTU-CVE-2025-11412

A vulnerability has been found in GNU Binutils 2.45. This impacts the function bfdelfgcrecordvtentry of the file bfd/elflink.c of the component Linker. The manipulation leads to out-of-bounds read. Local access is required to approach this attack. The exploit has been disclosed to the public and...

CVE-2025-11412 GNU Binutils Linker elflink.c bfd_elf_gc_record_vtentry out-of-bounds

A vulnerability has been found in GNU Binutils 2.45. This impacts the function bfdelfgcrecordvtentry of the file bfd/elflink.c of the component Linker. The manipulation leads to out-of-bounds read. Local access is required to approach this attack. The exploit has been disclosed to the public and...

AZL-67902 CVE-2025-11082 affecting package binutils for versions less than 2.37-19

A flaw has been found in GNU Binutils 2.45. Impacted is the function bfdelfparseehframe of the file bfd/elf-eh-frame.c of the component Linker. Executing manipulation can lead to heap-based buffer overflow. The attack is restricted to local execution. The exploit has been published and may be use...

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow via the bfdelfparseehframe function. An attacker can execute arbitrary code or cause a denial of service by providing specially crafted input to the process. Remediation A fix was pushed into the master branch...

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference via the bfdelfgetstrsection function in the bfd/elf.c file. Remediation A fix was pushed into the master branch but not yet published. References - GitHub Commit - POC Credit: John Reiser...

DEBIAN-CVE-2025-8224

A vulnerability has been found in GNU Binutils 2.44 and classified as problematic. This vulnerability affects the function bfdelfgetstrsection of the file bfd/elf.c of the component BFD Library. The manipulation leads to null pointer dereference. Local access is required to approach this attack...

UBUNTU-CVE-2025-8224

A vulnerability has been found in GNU Binutils 2.44 and classified as problematic. This vulnerability affects the function bfdelfgetstrsection of the file bfd/elf.c of the component BFD Library. The manipulation leads to null pointer dereference. Local access is required to approach this attack...

GNU Binutils（GNU Binary Utilities） 安全漏洞

GNU Binutils is a binary toolset developed by the GNU Project for working with target files and executables. A security vulnerability exists in GNU Binutils version 2.44, which stems from a bfdelfgetstrsection function handling exception in the bfd/elf.c component of the BFD library file. An...

AZL-65358 CVE-2025-7546 affecting package gdb for versions less than 11.2-7

A vulnerability, which was classified as problematic, has been found in GNU Binutils 2.45. Affected by this issue is the function bfdelfsetgroupcontents of the file bfd/elf.c. The manipulation leads to out-of-bounds write. It is possible to launch the attack on the local host. The exploit has bee...

UBUNTU-CVE-2025-7546

A vulnerability, which was classified as problematic, has been found in GNU Binutils 2.45. Affected by this issue is the function bfdelfsetgroupcontents of the file bfd/elf.c. The manipulation leads to out-of-bounds write. It is possible to launch the attack on the local host. The exploit has bee...

AZL-62047 CVE-2025-5244 affecting package gdb for versions less than 11.2-10

A vulnerability was found in GNU Binutils up to 2.44. It has been rated as critical. Affected by this issue is the function elfgcsweep of the file bfd/elflink.c of the component ld. The manipulation leads to memory corruption. An attack has to be approached locally. The exploit has been disclosed...