CVE-2025-11082

The CVE-2025-11082 entry concerns GNU Binutils 2.45. The vulnerable component is the linker function _bfd_elf_parse_eh_frame in bfd/elf-eh-frame.c, where manipulation can trigger a heap-based buffer overflow. Exploitation requires local execution, and an exploit has been published. The patch refe...

CVE-2025-11081

A vulnerability was detected in GNU Binutils 2.45. This issue affects the function dumpdwarfsection of the file binutils/objdump.c. Performing manipulation results in out-of-bounds read. The attack is only possible with local access. The exploit is now public and may be used. The patch is named...

CVE-2025-11081

A vulnerability was detected in GNU Binutils 2.45. This issue affects the function dumpdwarfsection of the file binutils/objdump.c. Performing manipulation results in out-of-bounds read. The attack is only possible with local access. The exploit is now public and may be used. The patch is named...

CVE-2025-11081

A vulnerability was detected in GNU Binutils 2.45. This issue affects the function dumpdwarfsection of the file binutils/objdump.c. Performing manipulation results in out-of-bounds read. The attack is only possible with local access. The exploit is now public and may be used. The patch is named...

CVE-2025-11081 GNU Binutils objdump.c dump_dwarf_section out-of-bounds

A vulnerability was detected in GNU Binutils 2.45. This issue affects the function dumpdwarfsection of the file binutils/objdump.c. Performing manipulation results in out-of-bounds read. The attack is only possible with local access. The exploit is now public and may be used. The patch is named...

CVE-2025-11081

CVE-2025-11081 pertains to GNU Binutils 2.45, specifically the dump_dwarf_section function in binutils/objdump.c. The issue allows a local attacker to trigger an out-of-bounds read, with exploit details publicly available. A patch is available (hash f87a66db645caf8cc0e6fc87b0c28c78a38af59b) and u...

GNU Binutils 缓冲区错误漏洞

GNU Binutils GNU Binary Utilities is a set of programming language utility programs developed by the American GNU community. The programs are primarily used to work with target files in a variety of formats, and provide connectors, assemblers, and other tools for target files and archives. A buff...

GNU Binutils 安全漏洞

GNU Binutils is a set of binary tools developed by the GNU Project to handle the management, analysis and debugging of executables, target files and other binary files. A heap buffer overflow vulnerability exists in GNU Binutils, which stems from the elfswapshdr function in the bfd/elfcode.h...

Security Bulletin: Multiple Vulnerabilities in IBM API Connect

Summary Multiple vulnerabilities were addressed in IBM API Connect version 10.0.8.4 Vulnerability Details CVEID:CVE-2016-10228 DESCRIPTION: The iconv program in the GNU C Library aka glibc or libc6 2.31 and earlier, when invoked with multiple suffixes in the destination encoding TRANSLATE or IGNO...

Ensure That GPG Verification Is Configured for the Yum Repositories

Software packages may be tampered with by attackers during network transmission or local storage. If the integrity verification is not performed on the software packages, software tampered with by attackers may be installed. As a result, the server or even the entire network cluster is attacked. ...

K000156609: GNU C Library for IBM POWER vulnerability CVE-2025-5702

Security Advisory Description The strcmp implementation optimized for the Power10 processor in the GNU C Library version 2.39 and later writes to vector registers v20 to v31 without saving contents from the caller those registers are defined as non-volatile registers by the powerpc64le ABI,...

CLSA-2025-1758711950 glibc: Fix of CVE-2020-1752

CVE-2020-1752: fix use-after-free vulnerability in glob...

CLSA-2025-1758704869 glibc: Fix of CVE-2020-1752

CVE-2020-1752: fix use-after-free vulnerability in glob...

Ubuntu 22.04 LTS / 24.04 LTS / 25.04 : GNU C Library vulnerability (USN-7760-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.04 host has packages installed that are affected by a vulnerability as referenced in the USN-7760-1 advisory. It was discovered that the GNU C Library incorrectly handled the regcomp function when memory allocation failures occured. An attacker could u...

USN-7760-1: GNU C Library vulnerability

It was discovered that the GNU C Library incorrectly handled the regcomp function when memory allocation failures occured. An attacker could use this issue to cause applications to crash, leading to a denial of service, or possibly execute arbitrary code...

USN-7760-1 glibc vulnerability

It was discovered that the GNU C Library incorrectly handled the regcomp function when memory allocation failures occured. An attacker could use this issue to cause applications to crash, leading to a denial of service, or possibly execute arbitrary code...

PT-2025-39750

Name of the Vulnerable Software and Affected Versions GNU Binutils versions prior to 2.46 Description A flaw exists in the Linker component of GNU Binutils. Specifically, the issue resides within the elf swap shdr function located in the bfd/elfcode.h library. This can lead to a heap-based buffer...

[SECURITY] Fedora 43 Update: kernel-headers-6.17.0-0.rc6.49.fc43

Kernel-headers includes the C header files that specify the interface between the Linux kernel and userspace libraries and programs. The header files define structures and constants that are needed for building most standard programs and are also needed for rebuilding the glibc package...

PT-2025-41191

Name of the Vulnerable Software and Affected Versions GNU Binutils version 2.45 Description A flaw exists within the Linker component of GNU Binutils 2.45, specifically in the bfd elf gc record vtentry function located in the bfd/elflink.c file. This issue allows for an out-of-bounds read. Local...

Plex Media Server: Incorrect resource transfer

Background Plex media server is a media library that is intended for use with a plex client. Description A vulnerability has been discovered in glibc. Please review the CVE identifier referenced below for details. Impact Please review the referenced CVE identifier for details. Workaround There is...