Primary

Context

GNU Binutils Memory Corruption Vulnerability in Versions 2.43 and 2.44

Vulnerability

Patched

A memory corruption vulnerability has been identified in GNU Binutils versions 2.43 and 2.44. The issue arises in the 'bfd_set_format' function within 'format.c', and can be exploited remotely, although the attack's complexity is considered high. Successful exploitation leads to a denial-of-service condition.

Impact

Exploitation of this vulnerability causes a denial-of-service condition.

Remediation

Users are advised to upgrade to GNU Binutils version 2.45, where this vulnerability has been addressed.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

2.5

exploitability

6.0

remediation

7.7

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

2.5

exploitability

6.0

remediation

7.7

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

GNU Binutils Memory Corruption Vulnerability in Versions 2.43 and 2.44

Vulnerability

Impact

Remediation

Affected Products

GNU Binutils

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating