CLSA-2026-1777969446 binutils: Fix of 8 CVEs

CVE-2021-45078: fix heap-based buffer overflow in stabxcoffbuiltintype - CVE-2021-46174: fix buffer overflow in readsectionstabsdebugginginfo - CVE-2022-44840: fix heap buffer overflow in findsectioninset - CVE-2022-45703: fix heap buffer overflow in displaygdbindex - CVE-2022-47695: fix...

CLSA-2026-1776331045 binutils: Fix of 5 CVEs

CVE-2025-11082: fix heap buffer overflow in bfdelfparseehframe - CVE-2025-5244: fix NULL deref in elfgcsweep for empty SECGROUP - CVE-2025-5245: fix SEGV in debugtypesamep / debugwritetype - CVE-2025-7545: fix heap buffer issue in objcopy copysection - CVE-2025-7546: fix corrupted group section...

CLSA-2026-1776256866 binutils: Fix of CVE-2025-11082

CVE-2025-11082: Fix heap-based buffer overflow in bfdelfparseehframe; mitigate local memory corruption risk; apply upstream patches ea1a0737c769 and e4f355f13be...

CLSA-2026-1776177493 Fix CVE(s): CVE-2025-11082

SECURITY UPDATE: fix heap-based buffer overflow in bfdelfparseehframe - debian/patches/CVE-2025-11082.patch: add bounds check before reading buf1 in the legacy "eh" CIE path - CVE-2025-11082...

K000159667: GNU Binutils vulnerabilities CVE-2025-11082 and CVE-2025-11083

Security Advisory Description CVE-2025-11082 A flaw has been found in GNU Binutils 2.45. Impacted is the function bfdelfparseehframe of the file bfd/elf-eh-frame.c of the component Linker. Executing manipulation can lead to heap-based buffer overflow. The attack is restricted to local execution...

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow via the bfdelfparseehframe function. An attacker can execute arbitrary code or cause a denial of service by providing specially crafted input to the process. Remediation A fix was pushed into the master branch...

The vulnerability of the _bfd_elf_parse_attributes function in the elf-attrs.c component of the GNU Binutils development environment allows a attacker to cause a service failure.

The vulnerability of the bfdelfparseattributes function in the elf-attrs.c component of the GNU Binutils development environment is related to the allocation of unlimited memory. Exploiting this vulnerability allows a remote attacker to cause a service failure through a specially created ELF file...

SUSE CVE-2018-6872

The elfparsenotes function in elf.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service out-of-bounds read and segmentation violation via a note with a large alignment...

The vulnerability of the elf_parse_notes function in the GNU Binutils development environment allows a hacker to trigger a service failure.

The vulnerability of the elfparsenotes function in the GNU Binutils development toolset is related to errors in accessing data beyond the specified buffer. Exploiting this vulnerability could allow a malicious actor to cause service failures by using an ELF file with a NOTES segment having a larg...

DEBIAN-CVE-2018-6872

The elfparsenotes function in elf.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service out-of-bounds read and segmentation violation via a note with a large alignment...

UBUNTU-CVE-2018-6872

The elfparsenotes function in elf.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service out-of-bounds read and segmentation violation via a note with a large alignment...