CVE-2025-11494

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions GNU Binutils version 2.45

Description An issue exists in GNU Binutils that involves an out-of-bounds read within the bfd x86 elf late size sections function, located in the bfd/elfxx-x86.c file of the Linker component. The vulnerability is locally exploitable. The exploit has been publicly disclosed.

Recommendations Apply the patch identified as b6ac5a8a5b82f0ae6a4642c8d7149b325f4cc60a.

Exploit

Fix

Buffer Overflow

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-125

Related Identifiers

BDU:2025-16073

CVE-2025-11494

ECHO-E73F-44BF-91B5

OESA-2025-2412

OESA-2025-2413

OESA-2025-2414

OESA-2025-2415

OESA-2025-2416

OESA-2025-2417

OPENSUSE-SU-2025:15651-1

OPENSUSE-SU-2025:20150-1

RHSA-2026:7098

SUSE-SU-2025:21195-1

SUSE-SU-2025:21197-1

SUSE-SU-2025:4096-1

USN-7919-1

Affected Products

Debian

Gnu Binutils

Linuxmint

Suse

Ubuntu

CVE-2025-11494

Weakness Enumeration

Related Identifiers

Affected Products

References · 116