2 matches found
CVE-2020-35448
CVE-2020-35448 affects GNU Binutils’ libbfd in CP4S (Binary File Descriptor) integration. The issue is a heap-based buffer over-read in bfd_getl_signed_32 in libbfd.c caused by lack of validation of sh_entsize in _bfd_elf_slurp_secondary_reloc_section() in elf.c, which can crash the application (...
CVE-2025-8225
The CVE-2025-8225 issue affects GNU Binutils 2.44, specifically the function process_debug_info in binutils/dwarf.c of the DWARF Section Handler. The vulnerability results in a memory leak and requires local access to exploit. A patch is identified by the commit hash e51fdff7d2e538c0e5accdd65649a...