CVE-2025-11082

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions GNU Binutils versions prior to 2.46

Description A flaw exists in GNU Binutils impacting the bfd elf parse eh frame function within the bfd/elf-eh-frame.c file of the Linker component. This can lead to a heap-based buffer overflow, with exploitation restricted to local execution. The exploit has been published.

Recommendations Update to version 2.46 or later.

Exploit

Fix

Buffer Overflow

Heap Based Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-122

Related Identifiers

ALSA-2025:23306

AZL-67902

AZL-67908

AZL-67914

AZL-67922

AZL-67925

AZL-67928

BDU:2025-13243

CLEANSTART-2026-EQ25508

CVE-2025-11082

ECHO-457A-192D-9847

OESA-2025-2412

OESA-2025-2413

OESA-2025-2414

OESA-2025-2415

OESA-2025-2416

OESA-2025-2417

RHSA-2025:23306

RHSA-2025:23405

RHSA-2026:7098

USN-7847-1

USN-7919-1

Affected Products

Debian

Gnu Binutils

Linuxmint

Red Os

Ubuntu

CVE-2025-11082

Weakness Enumeration

Related Identifiers

Affected Products

References · 84