CVE-2025-69646

Binutils objdump contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF debugrnglists data. A logic error in the handling of the debugrnglists header can cause objdump to repeatedly print the same warning message and fail to terminate, resulting in an...

CVE-2025-69652

GNU Binutils thru 2.46 readelf contains a vulnerability that leads to an abort SIGABRT when processing a crafted ELF binary with malformed DWARF abbrev or debug information. Due to incomplete state cleanup in processdebuginfo, an invalid debuginfop state may propagate into DWARF attribute parsing...

GNU Binutils objdump 安全漏洞

GNU Binutils objdump is a command-line tool for binary files in the American GNU community. GNU Binutils objdump has a security vulnerability, which stems from an error in the processing of the debugrnglists header when dealing with specially crafted binary files. This error may lead to infinite...

PT-2026-23729

Name of the Vulnerable Software and Affected Versions Binutils version 2.44 Description Binutils objdump is susceptible to a denial-of-service condition when processing a specially crafted binary file containing improperly formatted DWARF debug information. A flaw in the handling of DWARF...

GNU BinUtils 安全漏洞

GNU BinUtils is a set of programming tools for processing binary files in the GNU community in the United States. Versions of GNU BinUtils prior to version 2.46 contained security vulnerabilities, which were caused by logical processing flaws in handling specially crafted binary files. These flaw...

NewStart CGSL MAIN 6.06 (SP) : binutils Multiple Vulnerabilities (NS-SA-2026-0027)

The remote NewStart CGSL host, running version MAIN 6.06 SP, has binutils packages installed that are affected by multiple vulnerabilities: - An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.32. It is a heap-based buffer overflow in...

CVE-2025-69645

Binutils objdump contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF debug information. A logic error in the handling of DWARF compilation units can result in an invalid offsetsize value being used inside bytegetlittleendian, leading to an abort SIGABR...

CVE-2025-69649

CVE-2025-69649 affects GNU Binutils up to version 2.46 (readelf). A vulnerability in relocation processing can pass an invalid or null section pointer to display_relocations(), causing a null pointer dereference that leads to a segmentation fault (SIGSEGV) and process termination. The available s...

PT-2026-23728

Name of the Vulnerable Software and Affected Versions Binutils versions prior to 2.46 Description An issue exists in Binutils where the objdump utility is susceptible to denial-of-service. This occurs when processing a specially crafted binary file containing malformed debug information. A flaw i...

CVE-2025-69645

Binutils objdump contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF debug information. A logic error in the handling of DWARF compilation units can result in an invalid offsetsize value being used inside bytegetlittleendian, leading to an abort SIGABR...

CVE-2025-69651

GNU Binutils thru 2.46 readelf contains a vulnerability that leads to an invalid pointer free when processing a crafted ELF binary with malformed relocation or symbol data. If dumprelocations returns early due to parsing errors, the internal allrelocations array may remain partially uninitialized...

CVE-2025-69652

GNU Binutils thru 2.46 readelf contains a vulnerability that leads to an abort SIGABRT when processing a crafted ELF binary with malformed DWARF abbrev or debug information. Due to incomplete state cleanup in processdebuginfo, an invalid debuginfop state may propagate into DWARF attribute parsing...

GNU Binutils readelf 安全漏洞

GNU Binutils readelf is a command-line tool from the American GNU community. Versions of GNU Binutils readelf 2.46 and earlier contained security vulnerabilities. These vulnerabilities stemmed from incomplete cleanup of DWARF information when processing specially crafted ELF binary files. This...

GNU Binutils readelf 安全漏洞

GNU Binutils readelf is a command-line tool from the American GNU community. Versions of GNU Binutils readelf 2.46 and earlier contained security vulnerabilities. These vulnerabilities were due to improper relocation handling when processing specially crafted ELF binary files, which could lead to...

GNU Binutils objdump 安全漏洞

GNU Binutils objdump is a command-line tool for binary files in the American GNU community. GNU Binutils objdump has a security vulnerability, which stems from an error in the processing logic of the DWARF compilation unit when dealing with specially crafted binary files. This error may lead to t...

CVE-2025-69645

CVE-2025-69645 affects binutils objdump with a flaw in DWARF compilation unit handling that can drive an invalid offset_size into byte_get_little_endian, triggering a SIGABRT on crafted inputs. The issue is documented for binutils 2.44; several connected sources note a patch/release upgrade path ...

CVE-2025-69644

CVE-2025-69644 affects Binutils before 2.46, where objdump may loop indefinitely when parsing crafted binaries with malformed DWARF debug information due to a logic flaw in DWARF location list header handling. This can cause unbounded resource consumption and endless output, enabling a local atta...

CVE-2025-69646

CVE-2025-69646 affects GNU Binutils’ objdump. A logic error in handling the debug_rnglists header when processing a crafted binary (notably seen in binutils 2.44) can cause an unbounded logging loop, consuming CPU/I/O and preventing completion of objdump analysis. Affected component: objdump in b...

CVE-2025-69650

GNU Binutils thru 2.46 readelf contains a double free vulnerability when processing a crafted ELF binary with malformed relocation data. During GOT relocation handling, dumprelocations may return early without initializing the allrelocations array. As a result, processgotsectioncontents may pass ...

CVE-2025-69649

GNU Binutils thru 2.46 readelf contains a null pointer dereference vulnerability when processing a crafted ELF binary with malformed header fields. During relocation processing, an invalid or null section pointer may be passed into displayrelocations, resulting in a segmentation fault SIGSEGV and...