CNNVD-202510-2284 Information

Oct 16, 2025 cve

CNNVD ID

CNNVD-202510-2284

CVE-2025-11839

CNNVD Published: 2025-10-16

Description (Chinese)

GNU BinUtils是美国GNU社区的一组处理二进制文件的编程工具集合。 GNU BinUtils 2.45版本存在安全漏洞，该漏洞源于文件prdbg.c中函数tg_tag_type未检查返回值，可能导致本地攻击。

Description (English)

GNU BinUtils is a set of programming tools for the processing of binary files in the GNU community in the United States. There is a security loophole in version 2.45 of GNU BinUtils, which stems from the failure to check return values for function tg tag type in fileprdbg.c, which may lead to local attacks.

Hazard Level

Critical

Vulnerability Type

其他

Affected Vendor

GNU

Published

2025-10-16

Last Modified

2026-02-24

References

https://vuldb.com/?id.328774 https://vuldb.com/?ctiid.328774 https://vuldb.com/?submit.661279 https://sourceware.org/bugzilla/show_bug.cgi?id=33448 https://www.gnu.org/ https://sourceware.org/bugzilla/attachment.cgi?id=16344 https://vigilance.fr/vulnerability/GNU-Binutils-denial-of-service-via-tg-tag-type-48915 https://access.redhat.com/security/cve/cve-2025-11839

Share on: