PT-2025-39750 · Gnu+9 · Gnu Binutils+9

Jjleo

·

Published

2025-09-19

·

Updated

2026-04-20

·

CVE-2025-11083

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions GNU Binutils versions prior to 2.46
Description A flaw exists in the Linker component of GNU Binutils. Specifically, the issue resides within the elf swap shdr function located in the bfd/elfcode.h library. This can lead to a heap-based buffer overflow when exploited. Successful exploitation requires local access. The exploit is publicly available.
Recommendations Update to version 2.46 or later.

Exploit

Fix

Buffer Overflow

Heap Based Buffer Overflow

Weakness Enumeration

CWE-119CWE-122

Related Identifiers

ALSA-2025:23306
ALSA-2025:23336
ALSA-2025:23343
ALSA-2025:23382
ALSA-2026:0052
ALSA-2026:0108
ALSA-2026:1359
ALSA-2026:2627
AZL-67905
AZL-67911
AZL-67919
BDU:2025-13243
BDU:2025-14438
CLEANSTART-2026-EQ25508
CVE-2025-11083
ECHO-CE4E-90C2-9F62
OESA-2025-2566
OESA-2025-2567
OESA-2025-2568
OESA-2025-2569
OESA-2025-2570
OESA-2025-2628
OPENSUSE-SU-2025:15651-1
OPENSUSE-SU-2025:20150-1
RHSA-2025:23232
RHSA-2025:23233
RHSA-2025:23336
RHSA-2025:23343
RHSA-2025:23359
RHSA-2025:23382
RHSA-2025:23400
RHSA-2026:0052
RHSA-2026:0108
RHSA-2026:0341
RHSA-2026:0342
RHSA-2026:0343
RHSA-2026:0479
RHSA-2026:0480
RHSA-2026:0481
RHSA-2026:0482
RHSA-2026:1359
RHSA-2026:2627
RHSA-2026:7098
SUSE-SU-2025:21195-1
SUSE-SU-2025:21197-1
SUSE-SU-2025:4096-1
USN-7847-1
USN-7919-1

Affected Products

Almalinux
Centos
Debian
Gnu Binutils
Linuxmint
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu