Primary

Context

GNU Binutils Memory Corruption Vulnerability in the ELF Relocation Handling Function

Vulnerability

A critical memory corruption vulnerability has been identified in GNU Binutils version 2.43. The issue arises in the linker component, specifically within the ELF relocation handling function. This vulnerability can be exploited remotely, although the attack's complexity is considered high, making exploitation difficult.

Impact

Exploitation of this vulnerability leads to memory corruption, which can potentially be leveraged to execute arbitrary code or cause a denial-of-service condition.

Remediation

Users are advised to update to a version of GNU Binutils that includes the patch b425859021d17adf62f06fb904797cf8642986ad.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.6

exploitability

5.8

remediation

7.7

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.6

exploitability

5.8

remediation

7.7

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

GNU Binutils Memory Corruption Vulnerability in the ELF Relocation Handling Function

Vulnerability

Impact

Remediation

Affected Products

GNU Binutils

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating