SB2025082140 - Privilege escalation in GNU Binutils

Main Vulnerability Database SB2025082140

SB2025082140 - Privilege escalation in GNU Binutils

Published: August 21, 2025 Updated: October 14, 2025

Security Bulletin ID SB2025082140

Severity

Low

Patch available

YES

Number of vulnerabilities 10

Exploitation vector Local access

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 10 secuirty vulnerabilities.

1) Out-of-bounds write (CVE-ID: CVE-2025-7546)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the bfd_elf_set_group_contents() function in bfd/elf.c. A local user can trigger an out-of-bounds write and execute arbitrary code on the target system.

2) Heap-based buffer overflow (CVE-ID: CVE-2025-7545)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the copy_section() function in binutils/objcopy.c. A local user can trigger a heap-based buffer overflow and execute arbitrary code on the target system.

3) Buffer overflow (CVE-ID: CVE-2025-11413)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the elf_link_add_object_symbols() function in bfd/elflink.c. A local user can trigger memory corruption and execute arbitrary code on the target system.

4) Buffer overflow (CVE-ID: CVE-2025-11412)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the bfd_elf_gc_record_vtentry() function in bfd/elflink.c. A local user can trigger memory corruption and execute arbitrary code on the target system.

5) Buffer overflow (CVE-ID: CVE-2025-11414)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the get_link_hash_entry() function in bfd/elflink.c. A local user can trigger memory corruption and execute arbitrary code on the target system.

6) Buffer overflow (CVE-ID: CVE-2025-11495)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the elf_x86_64_relocate_section() function in elf64-x86-64.c. A local user can trigger memory corruption and execute arbitrary code on the target system.

7) Buffer overflow (CVE-ID: CVE-2025-11081)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the dump_dwarf_section() function in binutils/objdump.c. A local user can trigger memory corruption and execute arbitrary code on the target system.

8) Heap-based buffer overflow (CVE-ID: CVE-2025-11082)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the _bfd_elf_parse_eh_frame() function in bfd/elf-eh-frame.c. A local user can trigger a heap-based buffer overflow and execute arbitrary code on the target system.

9) Heap-based buffer overflow (CVE-ID: CVE-2025-11083)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the elf_swap_shdr() function in bfd/elfcode.h. A local user can trigger a heap-based buffer overflow and execute arbitrary code on the target system.

10) Buffer overflow (CVE-ID: CVE-2025-11494)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the _bfd_x86_elf_late_size_sections() function in bfd/elfxx-x86.c. A local user can trigger memory corruption and execute arbitrary code on the target system.

Remediation

Install update from vendor's website.

References