Astra Linux - уязвимость в binutils

A vulnerability was discovered in GNU Binutils 2.43 and is classified as critical. This issue affects the function bfdelfgcmarkrsec in the file elflink.c of the component ld. The vulnerability leads to a heap-based buffer overflow. The attack can be initiated remotely. The complexity of the attac...

CVE-2026-3441

A flaw was found in GNU Binutils. This heap-based buffer overflow vulnerability, specifically an out-of-bounds read in the bfd linker, allows an attacker to gain access to sensitive information. By convincing a user to process a specially crafted XCOFF object file, an attacker can trigger this...

CVE-2026-3442 Binutils: gnu binutils: information disclosure or denial of service via out-of-bounds read in bfd linker

A flaw was found in GNU Binutils. This vulnerability, a heap-based buffer overflow, specifically an out-of-bounds read, exists in the bfd linker component. An attacker could exploit this by convincing a user to process a specially crafted malicious XCOFF object file. Successful exploitation may...

CVE-2026-3442

A flaw was found in GNU Binutils. This vulnerability, a heap-based buffer overflow, specifically an out-of-bounds read, exists in the bfd linker component. An attacker could exploit this by convincing a user to process a specially crafted malicious XCOFF object file. Successful exploitation may...

binutils: GNU Binutils Linker heap-based overflow

A head based buffer overflow flaw has been discovered in GNU bin utilities. The affected element is the function elfswapshdr in the library bfd/elfcode.h of the component Linker. The manipulation leads to heap-based buffer overflow. The attack must be carried out locally...

CVE-2025-11495

A vulnerability was determined in GNU Binutils 2.45. The affected element is the function elfx8664relocatesection of the file elf64-x86-64.c of the component Linker. This manipulation causes heap-based buffer overflow. The attack can only be executed locally. The exploit has been publicly disclos...

EUVD-2025-33284

A vulnerability was found in GNU Binutils 2.45. Impacted is the function bfdx86elflatesizesections of the file bfd/elfxx-x86.c of the component Linker. The manipulation results in out-of-bounds read. The attack needs to be approached locally. The exploit has been made public and could be used. Th...

Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read via the elflinkaddobjectsymbols function in the Linker component. An attacker can cause a crash by supplying specially crafted input files during local processing. Remediation A fix was pushed into the master branch b...

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow via the elfswapshdr function in bfd/elfcode.h of the Linker component. An attacker can execute arbitrary code or cause a denial of service by providing crafted input that triggers a heap-based buffer overflow...

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow via the elfswapshdr function in bfd/elfcode.h of the Linker component. An attacker can execute arbitrary code or cause a denial of service by providing crafted input that triggers a heap-based buffer overflow...

SUSE CVE-2025-1150

A vulnerability was found in GNU Binutils 2.43. It has been declared as problematic. This vulnerability affects the function bfdmalloc of the file libbfd.c of the component ld. The manipulation leads to memory leak. The attack can be initiated remotely. The complexity of an attack is rather high...

AZL-56688 CVE-2025-1182 affecting package binutils for versions less than 2.37-13

A vulnerability, which was classified as critical, was found in GNU Binutils 2.43. Affected is the function bfdelfrelocsymboldeletedp of the file bfd/elflink.c of the component ld. The manipulation leads to memory corruption. It is possible to launch the attack remotely. The complexity of an atta...

AZL-56618 CVE-2025-1182 affecting package binutils for versions less than 2.41-4

A vulnerability, which was classified as critical, was found in GNU Binutils 2.43. Affected is the function bfdelfrelocsymboldeletedp of the file bfd/elflink.c of the component ld. The manipulation leads to memory corruption. It is possible to launch the attack remotely. The complexity of an atta...

AZL-56726 CVE-2025-1180 affecting package gdb 13.2-6

A vulnerability classified as problematic has been found in GNU Binutils 2.43. This affects the function bfdelfwritesectionehframe of the file bfd/elf-eh-frame.c of the component ld. The manipulation leads to memory corruption. It is possible to initiate the attack remotely. The complexity of an...

DEBIAN-CVE-2025-1179

A vulnerability was found in GNU Binutils 2.43. It has been rated as critical. Affected by this issue is the function bfdputl64 of the file bfd/libbfd.c of the component ld. The manipulation leads to memory corruption. The attack may be launched remotely. The complexity of an attack is rather hig...

AZL-56693 CVE-2025-1150 affecting package gdb 13.2-6

A vulnerability was found in GNU Binutils 2.43. It has been declared as problematic. This vulnerability affects the function bfdmalloc of the file libbfd.c of the component ld. The manipulation leads to memory leak. The attack can be initiated remotely. The complexity of an attack is rather high...

DEBIAN-CVE-2025-1151

A vulnerability was found in GNU Binutils 2.43. It has been rated as problematic. This issue affects the function xmemdup of the file xmemdup.c of the component ld. The manipulation leads to memory leak. The attack may be initiated remotely. The complexity of an attack is rather high. The...

DEBIAN-CVE-2025-1150

A vulnerability was found in GNU Binutils 2.43. It has been declared as problematic. This vulnerability affects the function bfdmalloc of the file libbfd.c of the component ld. The manipulation leads to memory leak. The attack can be initiated remotely. The complexity of an attack is rather high...

AZL-56606 CVE-2025-1151 affecting package gdb 13.2-6

A vulnerability was found in GNU Binutils 2.43. It has been rated as problematic. This issue affects the function xmemdup of the file xmemdup.c of the component ld. The manipulation leads to memory leak. The attack may be initiated remotely. The complexity of an attack is rather high. The...

PT-2025-6052

Name of the Vulnerable Software and Affected Versions GNU Binutils version 2.43 Description A problematic issue has been found in GNU Binutils, affecting the bfd elf write section eh frame function of the ld component. This issue leads to memory corruption and can be initiated remotely, although...