CVE-2025-8224

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions GNU Binutils version 2.44

Description A problematic issue exists in the BFD Library component of GNU Binutils. The bfd elf get str section function within the bfd/elf.c file is susceptible to a null pointer dereference. Local access is required for exploitation. The issue has been publicly disclosed.

Recommendations Apply the patch db856d41004301b3a56438efd957ef5cabb91530 to resolve the issue.

Exploit

Fix

Improper Resource Release

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-404CWE-476

Related Identifiers

ALT-PU-2025-11378

CVE-2025-8224

ECHO-ADA5-4A5C-CD14

OPENSUSE-SU-2025:15651-1

OPENSUSE-SU-2025:20150-1

SUSE-SU-2025:21195-1

SUSE-SU-2025:21197-1

SUSE-SU-2025:4096-1

Affected Products

Alt Linux

Debian

Gnu Binutils

Suse

CVE-2025-8224

Weakness Enumeration

Related Identifiers

Affected Products

References · 87