CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

77 matches found

Cvelist•added 2026/05/27 12:56 p.m.•36 views

CVE-2026-46006 drm/nouveau: fix u32 overflow in pushbuf reloc bounds check

In the Linux kernel, the following vulnerability has been resolved: drm/nouveau: fix u32 overflow in pushbuf reloc bounds check nouveaugempushbufrelocapply validates each relocation with if r-relocbooffset + 4 nvbo-bo.base.size but relocbooffset is u32 uapi/drm/nouveaudrm.h and the integer litera...

7.8CVSS0.00013EPSS

Exploits0References7

AstraLinux•added 2026/05/20 5:53 a.m.•8 views

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: x86, relocs: Ignore relocations in the .notes section. When building with CONFIGXENPV=y, .text symbols are emitted into the .notes section so that Xen can find the “startupxen” entry point. This information is used before booting...

5.5CVSS6.2AI score0.00023EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•4 views

Astra Linux - уязвимость в binutils

The readelf.c file in GNU Binutils 2.32 contains an integer overflow vulnerability that allows attackers to trigger a write access violation in the byteputlittleendian function in elfcomm.c through an ELF file, as demonstrated by readelf...

5.5CVSS6.8AI score0.00421EPSS

Exploits1References2

Redos•added 2026/05/06 12:0 a.m.•7 views

ROS-20260506-73-0006

A vulnerability in the displayrelocations function of the GNU Binutils development tool is related to null pointer dereferencing. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

7.5CVSS5.8AI score0.00052EPSS

Exploits1

AstraLinux•added 2026/05/03 11:59 p.m.•1 views

Astra Linux - уязвимость в binutils

The binutils version 2.32 and earlier contains an Integer Overflow vulnerability in objdump, bfdgetdynamicrelocupperbound, and bfdcanonicalizedynamicreloc. This vulnerability can lead to Integer Overflow, which in turn triggers Heap Overflow. Successful exploitation of this vulnerability allows f...

7.8CVSS6.8AI score0.00319EPSS

Exploits1References2

OSV•added 2026/03/17 3:40 p.m.•3 views

CLSA-2026-1773762013 binutils: Fix of CVE-2025-69649

CVE-2025-69649: null pointer dereference in readelf displayrelocations...

7.5CVSS5.8AI score0.00052EPSS

Exploits1References1

SUSE CVE•added 2026/03/11 4:25 p.m.•1 views

SUSE CVE-2025-69650

GNU Binutils thru 2.46 readelf contains a double free vulnerability when processing a crafted ELF binary with malformed relocation data. During GOT relocation handling, dumprelocations may return early without initializing the allrelocations array. As a result, processgotsectioncontents may pass ...

7.5CVSS6.3AI score0.00156EPSS

Exploits1References3

OSV•added 2026/03/06 6:16 p.m.•2 views

AZL-79574 CVE-2025-69651 affecting package binutils 2.41-10

GNU Binutils thru 2.46 readelf contains a vulnerability that leads to an invalid pointer free when processing a crafted ELF binary with malformed relocation or symbol data. If dumprelocations returns early due to parsing errors, the internal allrelocations array may remain partially uninitialized...

5.5CVSS6.2AI score0.00006EPSS

Exploits1References1

AlpineLinux•added 2026/03/06 12:0 a.m.•1 views

CVE-2025-69649

GNU Binutils thru 2.46 readelf contains a null pointer dereference vulnerability when processing a crafted ELF binary with malformed header fields. During relocation processing, an invalid or null section pointer may be passed into displayrelocations, resulting in a segmentation fault SIGSEGV and...

7.5CVSS5.8AI score0.00052EPSS

Exploits1References2

CVE•added 2026/03/06 12:0 a.m.•16 views

CVE-2025-69649

GNU Binutils up to 2.46 readelf contains a null pointer dereference vulnerability during relocation processing of crafted ELF headers; an invalid or null section pointer passed to display_relocations() can cause a segmentation fault. No evidence of memory corruption beyond the null pointer derefe...

7.5CVSS5.8AI score0.00052EPSS

Exploits1References2Affected Software1

OSV•added 2025/12/25 10:16 a.m.•1 views

CLSA-2025-1766657780 Fix CVE(s): CVE-2025-1181

SECURITY UPDATE: memory corruption when processing relocations for ELF files - debian/patches/CVE-2025-1181.patch: prevent illegal memory access when checking relocs in a corrupt ELF binary - CVE-2025-1181...

5.1CVSS6.4AI score0.00117EPSS

Exploits1References1

OpenVAS•added 2025/10/28 12:0 a.m.•0 views

Fedora: Security Advisory (FEDORA-2025-9df77858e9)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8AI score

Exploits0References2

SUSE CVE•added 2025/10/17 11:22 p.m.•2 views

SUSE CVE-2025-60358

radare2 v.5.9.8 and before contains a memory leak in the function loadrelocations...

5.5CVSS6.9AI score0.0002EPSS

Exploits0References3

RedhatCVE•added 2025/10/17 12:43 a.m.•1 views

CVE-2025-60358

radare2 v.5.9.8 and before contains a memory leak in the function loadrelocations. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread...

5.5CVSS6.5AI score0.0002EPSS

Exploits0References2