CVE-2025-1176 | GNU Binutils 2.43 ld elflink.c _bfd_elf_gc_mark_rsec heap-based overflow

Inserito da Angelo Barbosa | Feb 10, 2025 | CVE

A vulnerability was found in GNU Binutils 2.43 and classified as critical. This issue affects the function _bfd_elf_gc_mark_rsec of the file elflink.c of the component ld. The manipulation leads to heap-based buffer overflow.

The identification of this vulnerability is CVE-2025-1176. The attack may be initiated remotely. Furthermore, there is an exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2025-1176 | GNU Binutils 2.43 ld elflink.c _bfd_elf_gc_mark_rsec heap-based overflow

Post correlati

CVE-2024-48925 | Umbraco CMS up to 14.2.x Webhook API access control (GHSA-4gp9-ff99-j6vj)

CVE-2024-34138 | Adobe Illustrator up to 27.9.4/28.5 null pointer dereference (apsb24-45)

CVE-2023-51444 | GeoServer up to 2.23.3/2.24.0 REST Coverage Store API unrestricted upload (GHSA-9v5q-2gwq-q9hq)

CVE-2024-42493 | Dorsett Controls InfoScan 1.32/1.33/1.35 Response Header information disclosure (icsa-24-221-01)