← voltar
CVE-2025-11081

GNU Binutils objdump.c dump_dwarf_section out-of-bounds

CVSS 4.8 MEDIUMEPSS 0.2%CWE-119CWE-125
A vulnerability was detected in GNU Binutils 2.45. This issue affects the function dump_dwarf_section of the file binutils/objdump.c. Performing manipulation results in out-of-bounds read. The attack is only possible with local access. The exploit is now public and may be used. The patch is named f87a66db645caf8cc0e6fc87b0c28c78a38af59b. It is suggested to install a patch to address this issue.
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P
Produtos afetados
GNU · Binutils

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://github.com/user-attachments/files/20623354/hdf5_crash_3.txthttps://sourceware.org/bugzilla/show_bug.cgi?id=33406https://sourceware.org/bugzilla/show_bug.cgi?id=33406#c2https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=f87a66db645caf8cc0e6fc87b0c28c78a38af59bhttps://vuldb.com/?ctiid.326122https://vuldb.com/?id.326122https://vuldb.com/?submit.661275https://www.gnu.org/