CNNVD-202512-4903 Information

CNNVD ID

CNNVD-202512-4903

Related CVE

CVE-2025-66865

• CNNVD Published: 2025-12-29

Description (Chinese)

GNU BinUtils是美国GNU社区的一组处理二进制文件的编程工具集合。 GNU BinUtils 2.26版本存在安全漏洞，该漏洞源于cp-demangle.c文件中d_print_comp_inner函数对特制PE文件处理不当，可能导致拒绝服务。

Description (English)

GNU BinUtils is a set of programming tools for the processing of binary files in the GNU community in the United States. There is a security loophole in version 2.26 of GNU BinUtils, which originates in document cp-demangle.cd print comp inner, which mishandles a specially created PE file and may lead to the denial of service.

Hazard Level

Critical

Vulnerability Type

其他

Affected Vendor

GNU

Published

2025-12-29

Last Modified

2026-02-24

References

https://github.com/caozhzh/CRGF-Vul/blob/main/cxxfilt/crash4.md https://access.redhat.com/security/cve/cve-2025-66865

Patch

https://www.gnu.org/software/binutils/