Advisory ROSA-SA-2026-3277

software: binutils 2.38 WASP: ROSA-CHROME unaffected versions = binutils-2.38-8 affected versions binutils-2.38-8 CVE-ID: CVE-2025-69652 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the readelf utility of the GNU Binutils package is related to incorrect processing of specially...

Red Hat Enterprise Linux 10 资源管理错误漏洞

Red Hat Enterprise Linux 10 is a Linux operating system designed for enterprise users by the American company Red Hat. Red Hat Enterprise Linux 10 contains a resource management vulnerability. This vulnerability allows local attackers to exploit two denial-of-service vulnerabilities by providing...

CVE-2025-69652

A flaw was found in binutils. Processing a specially crafted ELF binary file containing malformed DWARF abbrev or debug information with the readelf program using the -w abbrev command line option can trigger an abort, causing a crash and resulting in a denial of service. Mitigation To mitigate...

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference in the readelf process when parsing a specially crafted ELF binary with malformed header fields. An attacker can cause the application to crash by convincing a user to process a malicious file. This is only...

Reachable Assertion

Overview Affected versions of this package are vulnerable to Reachable Assertion in the readelf process when parsing a specially crafted ELF binary containing malformed DWARF abbrev or debug information. An attacker can cause the application to abort and crash by convincing a user to process a...

CLSA-2025-1760105902 binutils: Fix of CVE-2017-9042

CVE-2017-9042: readelf.c fix a possible application crash known as the "cannot be represented in type long" issue...

USN-7369-1 elfutils vulnerabilities

It was discovered that readelf from elfutils could be made to read out of bounds. If a user or automated system were tricked into running readelf on a specially crafted file, an attacker could cause readelf to crash, resulting in a denial of service. This issue only affected Ubuntu 24.04 LTS...

OESA-2023-1445 elfutils security update

Elfutils is a collection of utilities, including stack to show backtraces, nm for listing symbols from object files, size for listing the section sizes of an object or archive file, strip for discarding symbols, elflint to check for well-formed ELF files and elfcompress to compress or decompress...

DEBIAN-CVE-2017-9042

readelf.c in GNU Binutils 2017-04-12 has a "cannot be represented in type long" issue, which might allow remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted ELF file...

DEBIAN-CVE-2017-8398

dwarf.c in GNU Binutils 2.28 is vulnerable to an invalid read of size 1 during dumping of debug information from a corrupt binary. This vulnerability causes programs that conduct an analysis of binary programs, such as objdump and readelf, to crash...

UBUNTU-CVE-2017-8398

dwarf.c in GNU Binutils 2.28 is vulnerable to an invalid read of size 1 during dumping of debug information from a corrupt binary. This vulnerability causes programs that conduct an analysis of binary programs, such as objdump and readelf, to crash...