522 matches found
CVE-2025-69650
GNU Binutils thru 2.46 readelf contains a double free vulnerability when processing a crafted ELF binary with malformed relocation data. During GOT relocation handling, dumprelocations may return early without initializing the allrelocations array. As a result, processgotsectioncontents may pass ...
CVE-2025-69650
GNU Binutils thru 2.46 readelf contains a double free vulnerability when processing a crafted ELF binary with malformed relocation data. During GOT relocation handling, dumprelocations may return early without initializing the allrelocations array. As a result, processgotsectioncontents may pass ...
PT-2026-23740
Name of the Vulnerable Software and Affected Versions GNU Binutils versions through 2.46 Description The software contains a double free issue when processing specially crafted ELF binaries with incorrect relocation data. Specifically, during Global Offset Table GOT relocation processing, the dum...
CVE-2025-69649
GNU Binutils thru 2.46 readelf contains a null pointer dereference vulnerability when processing a crafted ELF binary with malformed header fields. During relocation processing, an invalid or null section pointer may be passed into displayrelocations, resulting in a segmentation fault SIGSEGV and...
PT-2026-23739
Name of the Vulnerable Software and Affected Versions GNU Binutils versions through 2.46 Description The software contains a flaw where a null pointer dereference can occur when processing a specially crafted ELF binary with incorrectly formatted header fields. This happens during relocation...
GNU Binutils readelf 安全漏洞
GNU Binutils readelf is a command-line tool from the American GNU community. Versions of GNU Binutils readelf 2.46 and earlier contained security vulnerabilities. These vulnerabilities were due to improper relocation handling when processing specially crafted ELF binary files, which could lead to...
CVE-2025-69650
GNU Binutils thru 2.46 readelf contains a double free vulnerability when processing a crafted ELF binary with malformed relocation data. During GOT relocation handling, dumprelocations may return early without initializing the allrelocations array. As a result, processgotsectioncontents may pass ...
CVE-2025-69651
GNU Binutils thru 2.46 readelf contains a vulnerability that leads to an invalid pointer free when processing a crafted ELF binary with malformed relocation or symbol data. If dumprelocations returns early due to parsing errors, the internal allrelocations array may remain partially uninitialized...
CVE-2025-69649
GNU Binutils thru 2.46 readelf contains a null pointer dereference vulnerability when processing a crafted ELF binary with malformed header fields. During relocation processing, an invalid or null section pointer may be passed into displayrelocations, resulting in a segmentation fault SIGSEGV and...
CVE-2025-69651
GNU Binutils thru 2.46 readelf contains a vulnerability that leads to an invalid pointer free when processing a crafted ELF binary with malformed relocation or symbol data. If dumprelocations returns early due to parsing errors, the internal allrelocations array may remain partially uninitialized...
CVE-2025-69649
GNU Binutils up to 2.46 readelf contains a null pointer dereference vulnerability during relocation processing of crafted ELF headers; an invalid or null section pointer passed to display_relocations() can cause a segmentation fault. No evidence of memory corruption beyond the null pointer derefe...
CVE-2025-69649
GNU Binutils thru 2.46 readelf contains a null pointer dereference vulnerability when processing a crafted ELF binary with malformed header fields. During relocation processing, an invalid or null section pointer may be passed into displayrelocations, resulting in a segmentation fault SIGSEGV and...
CVE-2025-69651
CVE-2025-69651 affects GNU Binutils through version 2.46, specifically the readelf component. The vulnerability arises from an invalid pointer free when parsing a crafted ELF binary with malformed relocation or symbol data. If dump_relocations exits early, the internal all_relocations array may b...
OSV-2026-350 UNKNOWN READ in bfd_getl32
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=489127262 Crash type: UNKNOWN READ Crash state: bfdgetl32 mips3264bitreloc bfdperformrelocation...
Siemens S7-1500 Heap-based Buffer Overflow (CVE-2025-11495)
A vulnerability was determined in GNU Binutils 2.45. The affected element is the function elfx8664relocatesection of the file elf64-x86-64.c of the component Linker. This manipulation causes heap- based buffer overflow. The attack can only be executed locally. The exploit has been publicly...
Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005082)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005082 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Using uninitialized value size when calling amdgpuvcecsreloc Initialize the size befo...
Azure Linux 3.0 Security Update: kernel (CVE-2024-49850)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-49850 advisory. - In the Linux kernel, the following vulnerability has been resolved: bpf: correctly handle malformed...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001394)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001394 advisory. An issue was discovered in the Linux kernel through 4.17.10. There is an invalid pointer dereference in delrelocroot in fs/btrfs/relocation.c when mounting a crafted...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000595)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000595 advisory. Integer overflow in drivers/gpu/drm/i915/i915gemexecbuffer.c in the i915 driver in the Direct Rendering Manager DRM subsystem in the Linux kernel through 3.8.3, as...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003216)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003216 advisory. An issue was discovered in the Linux kernel through 4.17.10. There is an invalid pointer dereference in delrelocroot in fs/btrfs/relocation.c when mounting a crafted...