CVE-2025-69650

Name of the Vulnerable Software and Affected Versions GNU Binutils versions through 2.46

Description The software contains a double free issue when processing specially crafted ELF binaries with incorrect relocation data. Specifically, during Global Offset Table (GOT) relocation processing, the dump relocations function may prematurely return without properly initializing the all relocations array. Subsequently, the process got section contents function might pass an uninitialized pointer, r symbol, to the free() function, resulting in a double free and program termination via a SIGABRT signal. The impact is limited to a denial-of-service condition, with no observed evidence of exploitable memory corruption or code execution.

Recommendations Update to a version of GNU Binutils newer than 2.46.