Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2025-11414

Опубликовано: 07 окт. 2025
Источник: ubuntu
Приоритет: medium
CVSS2: 1.7
CVSS3: 3.3

Описание

A vulnerability was determined in GNU Binutils 2.45. Affected by this vulnerability is the function get_link_hash_entry of the file bfd/elflink.c of the component Linker. This manipulation causes out-of-bounds read. The attack can only be executed locally. The exploit has been publicly disclosed and may be utilized. Upgrading to version 2.46 addresses this issue. Patch name: aeaaa9af6359c8e394ce9cf24911fec4f4d23703. It is advisable to upgrade the affected component.

РелизСтатусПримечание
devel

not-affected

2.45.50.20251125-1ubuntu1
esm-infra-legacy/trusty

released

2.24-5ubuntu14.2+esm8
esm-infra/bionic

released

2.30-21ubuntu1~18.04.9+esm13
esm-infra/focal

released

2.34-6ubuntu1.11+esm2
esm-infra/xenial

released

2.26.1-1ubuntu1~16.04.8+esm14
jammy

released

2.38-4ubuntu2.12
noble

released

2.42-4ubuntu2.8
plucky

released

2.44-3ubuntu1.3
questing

released

2.45-7ubuntu1.2
upstream

released

2.46

Показывать по

Ссылки на источники

1.7 Low

CVSS2

3.3 Low

CVSS3

Связанные уязвимости

nvd логотип

CVE-2025-11414

CVSS3: 3.3
nvd
3 месяца назад

A vulnerability was determined in GNU Binutils 2.45. Affected by this vulnerability is the function get_link_hash_entry of the file bfd/elflink.c of the component Linker. This manipulation causes out-of-bounds read. The attack can only be executed locally. The exploit has been publicly disclosed and may be utilized. Upgrading to version 2.46 addresses this issue. Patch name: aeaaa9af6359c8e394ce9cf24911fec4f4d23703. It is advisable to upgrade the affected component.

msrc логотип

CVE-2025-11414

CVSS3: 3.3
msrc
3 месяца назад

GNU Binutils Linker elflink.c get_link_hash_entry out-of-bounds

debian логотип

CVE-2025-11414

CVSS3: 3.3
debian
3 месяца назад

A vulnerability was determined in GNU Binutils 2.45. Affected by this ...

github логотип

GHSA-77mm-f2xg-rwg2

CVSS3: 3.3
github
3 месяца назад

A vulnerability was determined in GNU Binutils 2.45. Affected by this vulnerability is the function get_link_hash_entry of the file bfd/elflink.c of the component Linker. This manipulation causes out-of-bounds read. The attack can only be executed locally. The exploit has been publicly disclosed and may be utilized. Upgrading to version 2.46 addresses this issue. Patch name: aeaaa9af6359c8e394ce9cf24911fec4f4d23703. It is advisable to upgrade the affected component.

fstec логотип

BDU:2025-14399

CVSS3: 5.5
fstec
3 месяца назад

Уязвимость функции get_link_hash_entry() программного средства разработки GNU Binutils, позволяющая нарушителю повысить свои привилегии

1.7 Low

CVSS2

3.3 Low

CVSS3