CVE-2025-11495

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions GNU Binutils version 2.45

Description A heap-based buffer overflow exists in the Linker component of GNU Binutils. The issue is located in the elf x86 64 relocate section function within the elf64-x86-64.c file. This manipulation can be exploited locally. The exploit has been publicly disclosed.

Recommendations Deploy patch 6b21c8b2ecfef5c95142cbc2c32f185cb1c26ab0.

Exploit

Fix

Buffer Overflow

Heap Based Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-122

Related Identifiers

BDU:2025-16062

CVE-2025-11495

ECHO-E055-A186-4CE3

OPENSUSE-SU-2025:15651-1

OPENSUSE-SU-2025:20150-1

RHSA-2026:7098

SUSE-SU-2025:21195-1

SUSE-SU-2025:21197-1

SUSE-SU-2025:4096-1

USN-7919-1

Affected Products

Debian

Gnu Binutils

Linuxmint

Suse

Ubuntu

CVE-2025-11495

Weakness Enumeration

Related Identifiers

Affected Products

References · 100