CNNVD-202507-3411 Information

Jul 27, 2025 cve

CNNVD ID

CNNVD-202507-3411

CVE-2025-8225

CNNVD Published: 2025-07-27

Description (Chinese)

GNU Binutils（GNU Binary Utilities）是美国GNU社区的开发的一组编程语言工具程序。该程序主要用于处理多种格式的目标文件，并提供有连接器、汇编器和其他用于目标文件和档案的工具。 GNU Binutils（GNU Binary Utilities） 2.44版本存在安全漏洞，该漏洞源于组件DWARF Section Handler中文件binutils/dwarf.c的函数process_debug_info存在内存泄漏。

Description (English)

GNU Binutils (GNU Binary Utilities) is a programming language tool developed by the GNU community in the United States. The program is used primarily to process target documents in multiple formats and to provide links, compilers and other tools for target documents and archives. The version 2.44 of GNU Binutils (GNU Binary Utilities) contains a security loophole, which originates from the RAM leak of the document binutils/dwarf.c in component DWARF Section Handler.

Hazard Level

Critical

Vulnerability Type

其他

Affected Vendor

GNU

Published

2025-07-27

Last Modified

2026-02-24

References

https://gitlab.com/gnutools/binutils-gdb/-/commit/e51fdff7d2e538c0e5accdd65649ac68e6e0ddd4 https://vuldb.com/?id.317813 https://vuldb.com/?ctiid.317813 https://vuldb.com/?submit.621883 https://www.gnu.org/ https://vigilance.fr/vulnerability/GNU-Binutils-memory-leak-via-process-debug-info-47844

Share on: