CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

80 matches found

AstraLinux•added 2026/06/19 11:10 a.m.•10 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: x86, relocs: Ignore relocations in the .notes section. When building with CONFIGXENPV=y, .text symbols are emitted into the .notes section so that Xen can find the “startupxen” entry point. This information is used before booting...

5.5CVSS5.7AI score0.00307EPSS

Exploits0References2

AstraLinux•added 2026/06/19 11:10 a.m.•5 views

Astra Linux – Vulnerability in binutils

The readelf.c file in GNU Binutils 2.32 contains an integer overflow vulnerability that allows attackers to trigger a write access violation in the byteputlittleendian function in elfcomm.c through an ELF file, as demonstrated by readelf...

5.5CVSS6.4AI score0.01481EPSS

Exploits1References2

Cvelist•added 2026/05/27 12:56 p.m.•44 views

CVE-2026-46006 drm/nouveau: fix u32 overflow in pushbuf reloc bounds check

In the Linux kernel, the following vulnerability has been resolved: drm/nouveau: fix u32 overflow in pushbuf reloc bounds check nouveaugempushbufrelocapply validates each relocation with if r-relocbooffset + 4 nvbo-bo.base.size but relocbooffset is u32 uapi/drm/nouveaudrm.h and the integer litera...

7.8CVSS0.00129EPSS

Exploits0References8

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в binutils

The binutils version 2.32 and earlier contains an Integer Overflow vulnerability in objdump, bfdgetdynamicrelocupperbound, and bfdcanonicalizedynamicreloc. This vulnerability can lead to Integer Overflow, which in turn triggers Heap Overflow. Successful exploitation of this vulnerability allows f...

7.8CVSS6.8AI score0.00651EPSS

Exploits1References2

Redos•added 2026/05/06 12:0 a.m.•11 views

ROS-20260506-73-0006

A vulnerability in the displayrelocations function of the GNU Binutils development tool is related to null pointer dereferencing. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

7.5CVSS5.8AI score0.00256EPSS

Exploits1

OSV•added 2026/03/17 3:40 p.m.•11 views

CLSA-2026-1773762013 binutils: Fix of CVE-2025-69649

CVE-2025-69649: null pointer dereference in readelf displayrelocations...

7.5CVSS5.8AI score0.00256EPSS

Exploits1References1

SUSE CVE•added 2026/03/11 4:25 p.m.•3 views

SUSE CVE-2025-69650

GNU Binutils thru 2.46 readelf contains a double free vulnerability when processing a crafted ELF binary with malformed relocation data. During GOT relocation handling, dumprelocations may return early without initializing the allrelocations array. As a result, processgotsectioncontents may pass ...

7.5CVSS6.3AI score0.00502EPSS

Exploits1References3

OSV•added 2026/03/06 6:16 p.m.•7 views

AZL-79574 CVE-2025-69651 affecting package binutils 2.41-10

GNU Binutils thru 2.46 readelf contains a vulnerability that leads to an invalid pointer free when processing a crafted ELF binary with malformed relocation or symbol data. If dumprelocations returns early due to parsing errors, the internal allrelocations array may remain partially uninitialized...

5.5CVSS6.2AI score0.0024EPSS

Exploits1References1

CVE•added 2026/03/06 12:0 a.m.•46 views

CVE-2025-69649

CVE-2025-69649 affects GNU Binutils up to version 2.46 (readelf). A vulnerability in relocation processing can pass an invalid or null section pointer to display_relocations(), causing a null pointer dereference that leads to a segmentation fault (SIGSEGV) and process termination. The available s...

7.5CVSS5.8AI score0.00256EPSS

Exploits1References2Affected Software1

AlpineLinux•added 2026/03/06 12:0 a.m.•2 views

CVE-2025-69649

GNU Binutils thru 2.46 readelf contains a null pointer dereference vulnerability when processing a crafted ELF binary with malformed header fields. During relocation processing, an invalid or null section pointer may be passed into displayrelocations, resulting in a segmentation fault SIGSEGV and...

7.5CVSS5.8AI score0.00256EPSS

Exploits1References2

OSV•added 2025/12/25 10:16 a.m.•3 views

CLSA-2025-1766657780 Fix CVE(s): CVE-2025-1181

SECURITY UPDATE: memory corruption when processing relocations for ELF files - debian/patches/CVE-2025-1181.patch: prevent illegal memory access when checking relocs in a corrupt ELF binary - CVE-2025-1181...

5.1CVSS6.4AI score0.00657EPSS

Exploits1References1

OpenVAS•added 2025/10/28 12:0 a.m.•2 views

Fedora: Security Advisory (FEDORA-2025-9df77858e9)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8AI score

Exploits0References2

SUSE CVE•added 2025/10/17 11:22 p.m.•2 views

SUSE CVE-2025-60358

radare2 v.5.9.8 and before contains a memory leak in the function loadrelocations...

5.5CVSS6.9AI score0.00145EPSS

Exploits0References3

RedhatCVE•added 2025/10/17 12:43 a.m.•2 views

CVE-2025-60358

radare2 v.5.9.8 and before contains a memory leak in the function loadrelocations. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread...

5.5CVSS6.5AI score0.00145EPSS

Exploits0References2