CNNVD-202507-1796 Information
CNNVD ID
CNNVD-202507-1796
Related CVE
- CNNVD Published: 2025-07-13
Description (Chinese)
GNU Binutils(GNU Binary Utilities)是美国GNU社区的开发的一组编程语言工具程序。该程序主要用于处理多种格式的目标文件,并提供有连接器、汇编器和其他用于目标文件和档案的工具。 GNU Binutils(GNU Binary Utilities) 2.45版本存在缓冲区错误漏洞,该漏洞源于对文件bfd/elf.c中函数bfd_elf_set_group_contents的错误操作导致越界写入。
Description (English)
GNU Binutils (GNU Binary Utilities) is a programming language tool developed by the GNU community in the United States. The program is used primarily to process target documents in multiple formats and to provide links, compilers and other tools for target documents and archives. The version of GNU Binutils (GNU Binary Utilities) 2.45 contains a buffer zone error loophole, which results from an error in the operation of the bfd/elf.c function bfd elf set group contents.
Hazard Level
High
Vulnerability Type
缓冲区错误
Affected Vendor
GNU
Published
2025-07-13
Last Modified
2026-02-24
References
https://sourceware.org/bugzilla/show_bug.cgi?id=33050 https://vuldb.com/?id.316244 https://sourceware.org/bugzilla/attachment.cgi?id=16118 https://vuldb.com/?submit.614375 https://vuldb.com/?ctiid.316244 https://sourceware.org/bugzilla/show_bug.cgi?id=33050#c2 https://www.gnu.org/ https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=41461010eb7c79fee7a9d5f6209accdaac66cc6b https://vigilance.fr/vulnerability/mingw-binutils-buffer-overflow-dated-28-07-2025-47796
Patch
https://ftp.gnu.org/gnu/binutils/
Share on: