Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2025-11412

Опубликовано: 07 окт. 2025
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 1.7
CVSS3: 3.3

Описание

A vulnerability has been found in GNU Binutils 2.45. This impacts the function bfd_elf_gc_record_vtentry of the file bfd/elflink.c of the component Linker. The manipulation leads to out-of-bounds read. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The identifier of the patch is 047435dd988a3975d40c6626a8f739a0b2e154bc. To fix this issue, it is recommended to deploy a patch.

РелизСтатусПримечание
devel

not-affected

2.45.50.20251125-1ubuntu1
esm-infra-legacy/trusty

released

2.24-5ubuntu14.2+esm8
esm-infra/bionic

released

2.30-21ubuntu1~18.04.9+esm13
esm-infra/focal

released

2.34-6ubuntu1.11+esm2
esm-infra/xenial

released

2.26.1-1ubuntu1~16.04.8+esm14
jammy

released

2.38-4ubuntu2.12
noble

released

2.42-4ubuntu2.8
plucky

released

2.44-3ubuntu1.3
questing

released

2.45-7ubuntu1.2
upstream

released

2.46

Показывать по

Ссылки на источники

EPSS

Процентиль: 7%
0.00027
Низкий

1.7 Low

CVSS2

3.3 Low

CVSS3

Связанные уязвимости

nvd логотип

CVE-2025-11412

CVSS3: 3.3
nvd
3 месяца назад

A vulnerability has been found in GNU Binutils 2.45. This impacts the function bfd_elf_gc_record_vtentry of the file bfd/elflink.c of the component Linker. The manipulation leads to out-of-bounds read. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The identifier of the patch is 047435dd988a3975d40c6626a8f739a0b2e154bc. To fix this issue, it is recommended to deploy a patch.

msrc логотип

CVE-2025-11412

CVSS3: 3.3
msrc
3 месяца назад

GNU Binutils Linker elflink.c bfd_elf_gc_record_vtentry out-of-bounds

debian логотип

CVE-2025-11412

CVSS3: 3.3
debian
3 месяца назад

A vulnerability has been found in GNU Binutils 2.45. This impacts the ...

github логотип

GHSA-fw6m-h9wv-4759

CVSS3: 3.3
github
3 месяца назад

A vulnerability has been found in GNU Binutils 2.45. This impacts the function bfd_elf_gc_record_vtentry of the file bfd/elflink.c of the component Linker. The manipulation leads to out-of-bounds read. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The identifier of the patch is 047435dd988a3975d40c6626a8f739a0b2e154bc. To fix this issue, it is recommended to deploy a patch.

fstec логотип

BDU:2025-14400

CVSS3: 5.5
fstec
4 месяца назад

Уязвимость функции bfd_elf_gc_record_vtentry() программного средства разработки GNU Binutils, позволяющая нарушителю повысить свои привилегии

EPSS

Процентиль: 7%
0.00027
Низкий

1.7 Low

CVSS2

3.3 Low

CVSS3