Primary

Context

GNU Binutils Memory Corruption Vulnerability in ld Component

Vulnerability

Patched

A critical memory corruption vulnerability has been identified in GNU Binutils version 2.43. The issue arises in the ld component, specifically within the bfd_putl64 function in bfd/libbfd.c. This vulnerability can be exploited remotely, although the attack's complexity is high and exploitation is known to be difficult.

Impact

Exploitation of this vulnerability leads to memory corruption.

Remediation

Users are advised to upgrade to GNU Binutils version 2.44 or later, as this issue has been fixed in that release.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

2.5

exploitability

5.8

remediation

7.7

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

2.5

exploitability

5.8

remediation

7.7

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

GNU Binutils Memory Corruption Vulnerability in ld Component

Vulnerability

Impact

Remediation

Affected Products

GNU Binutils

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating