CLSA-2026-1775726631 binutils: Fix of 9 CVEs

CVE-2023-1972: fix heap buffer overflow in bfdelfslurpversiontables - CVE-2025-11412: fix out-of-bounds read in bfdelfgcrecordvtentry - CVE-2025-11413: fix out-of-bounds read in elflinkaddobjectsymbols - CVE-2025-11839: fix abort in tgtagtype with fuzzed input - CVE-2025-11840: fix SEGV from NULL...

CLSA-2026-1776069305 binutils: Fix of 2 CVEs

CVE-2026-3441, CVE-2026-3442: fix out-of-bounds read in XCOFF relocation processing...

CLSA-2026-1776156000 binutils: Fix of 4 CVEs

CVE-2025-5244: fix NULL deref in elfgcsweep with empty groups - CVE-2025-5245: fix SEGV in debugtypesamep - CVE-2026-3441 CVE-2026-3442: fix out-of-bounds read in XCOFF relocation processing...

CLSA-2026-1775721575 binutils: Fix of 4 CVEs

CVE-2025-5244: fix NULL deref in elfgcsweep with empty groups - CVE-2025-5245: fix SEGV in debugtypesamep, handle undefined tagged enums - CVE-2026-3441 CVE-2026-3442: fix out-of-bounds read in XCOFF relocation processing...

Binutils: out-of-bounds read in xcoff relocation processing in gnu binutils bfd library

...

CVE-2026-4647 Binutils: out-of-bounds read in xcoff relocation processing in gnu binutils bfd library

A flaw was found in the GNU Binutils BFD library, a widely used component for handling binary files such as object files and executables. The issue occurs when processing specially crafted XCOFF object files, where a relocation type value is not properly validated before being used. This can caus...