PT-2025-41191 · Gnu+5 · Gnu Binutils+5

Published

2025-09-18

Updated

2026-04-20

CVE-2025-11412

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions GNU Binutils version 2.45

Description A flaw exists within the Linker component of GNU Binutils 2.45, specifically in the bfd elf gc record vtentry function located in the bfd/elflink.c file. This issue allows for an out-of-bounds read. Local access is required for exploitation. The exploit details have been publicly disclosed.

Recommendations Apply the patch with identifier 047435dd988a3975d40c6626a8f739a0b2e154bc.

Exploit

Fix

DoS

Out of bounds Read

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125CWE-119

Related Identifiers

AZL-68376

AZL-68394

AZL-68403

BDU:2025-14400

CVE-2025-11412

ECHO-F627-7DA2-5CEA

OESA-2025-2624

OESA-2025-2625

OESA-2025-2626

OESA-2025-2627

OESA-2025-2628

OESA-2025-2629

OPENSUSE-SU-2025:15651-1

OPENSUSE-SU-2025:20150-1

RHSA-2026:7098

SUSE-SU-2025:21195-1

SUSE-SU-2025:21197-1

SUSE-SU-2025:4096-1

USN-7919-1

Affected Products

Debian

Gnu Binutils

Linuxmint

Red Os

Suse

Ubuntu

PT-2025-41191 · Gnu+5 · Gnu Binutils+5

CVE-2025-11412

Weakness Enumeration

Related Identifiers

Affected Products

References · 123