CLSA-2026-1776156000 binutils: Fix of 4 CVEs

CVE-2025-5244: fix NULL deref in elfgcsweep with empty groups - CVE-2025-5245: fix SEGV in debugtypesamep - CVE-2026-3441 CVE-2026-3442: fix out-of-bounds read in XCOFF relocation processing...

CLSA-2026-1776256866 binutils: Fix of CVE-2025-11082

CVE-2025-11082: Fix heap-based buffer overflow in bfdelfparseehframe; mitigate local memory corruption risk; apply upstream patches ea1a0737c769 and e4f355f13be...

CLSA-2026-1776256710 binutils: Fix of CVE-2025-11082

CVE-2025-11082: Fix heap-based buffer overflow in bfdelfparseehframe triggered by crafted EH frame data; apply patches ea1a0737c769 and e4f355f13be...

CLSA-2026-1776259627 binutils: Fix of CVE-2025-11082

CVE-2025-11082: fix heap-based buffer overflow in bfdelfparseehframe...

CLSA-2026-1776083558 binutils: Fix of 4 CVEs

CVE-2025-5244: fix NULL deref in elfgcsweep on empty section group - CVE-2025-5245: fix NULL deref in debugtypesamep for incomplete enum types - CVE-2026-3441, CVE-2026-3442: fix xcofflink out-of-bounds accesses...

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference via the readelf process. An attacker can cause the process to become unresponsive or crash by enticing a user to execute it on a specially crafted ELF file, resulting in resource exhaustion or a segmentation...

Unity Linux 20.1070e Security Update: binutils (UTSA-2026-007090)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007090 advisory. A vulnerability, which was classified as problematic, has been found in GNU Binutils 2.45. Affected by this issue is the function bfdelfsetgroupcontents of the file...

Unity Linux 20.1070e Security Update: binutils (UTSA-2026-007081)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007081 advisory. A vulnerability classified as problematic was found in GNU Binutils 2.45. Affected by this vulnerability is the function copysection of the file binutils/objcopy.c...

Unity Linux 20.1070e Security Update: binutils (UTSA-2026-007092)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007092 advisory. A vulnerability was found in GNU Binutils 2.44 and classified as problematic. This issue affects the function processdebuginfo of the file binutils/dwarf.c of the...

binutils: Fix of 4 CVEs

CVE-2025-5244: fix NULL pointer dereference in elfgcsweep for empty section groups - CVE-2025-5245: fix memory corruption in debugtypesamep incorrect NULL check - CVE-2026-3441: fix out-of-bounds read in xcofflinkaddsymbols xscnlen bounds check - CVE-2026-3442: fix out-of-bounds read in...

Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-7.5.1)

The version of AOS installed on the remote host is prior to 7.5.1. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-7.5.1 advisory. - A vulnerability has been found in GNU Binutils 2.45. The affected element is the function elfswapshdr in the library...

[SECURITY] Fedora 42 Update: mingw-binutils-2.43.1-6.fc42

Cross compiled binutils utilities like 'strip', 'as', 'ld' which understand Windows executables and DLLs...

[SECURITY] Fedora 43 Update: mingw-binutils-2.45.1-2.fc43

Cross compiled binutils utilities like 'strip', 'as', 'ld' which understand Windows executables and DLLs...

Fedora 42 : mingw-binutils (2026-fe96f3532b)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-fe96f3532b advisory. Backport fixes for multiple CVEs. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus...

Fedora 43 : mingw-binutils (2026-9174e6ea37)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-9174e6ea37 advisory. Backport fixes for multiple CVEs. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus...

CLSA-2026-1775148022 binutils: Fix of 3 CVEs

CVE-2025-66862: fix heap-buffer-overflow in gnuspecial in cplus-dem.c - CVE-2025-66863: fix SEGV in ddiscriminator in cp-demangle.c - CVE-2025-66865: fix stack overflow in dprintcomp in cp-demangle.c...

CLSA-2026-1775148284 binutils: Fix of 3 CVEs

CVE-2025-66862: fix heap-buffer-overflow in gnuspecial in cplus-dem.c - CVE-2025-66863: fix SEGV in ddiscriminator in cp-demangle.c - CVE-2025-66865: fix stack overflow in dprintcomp in cp-demangle.c...

Binutils: out-of-bounds read in xcoff relocation processing in gnu binutils bfd library

...

Photon OS 5.0: Binutils PHSA-2026-5.0-0796

An update of the binutils package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-5.0-0796. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

GNU BinUtils Buffer Overflow Vulnerability (CNVD-2026-16063)

GNU BinUtils is a collection of programming tools for working with binaries from the American GNU community. A buffer overflow vulnerability exists in GNU BinUtils, which arises from processing specially crafted XCOFF object files without properly validating the relocation type value, and can be...