SB2025120212 - Ubuntu update for binutils

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2025120212

SB2025120212 - Ubuntu update for binutils

Published: December 2, 2025

Security Bulletin ID SB2025120212
Severity
High
Patch available
YES
Number of vulnerabilities 11
Exploitation vector Remote access
Highest impact Code execution

Breakdown by Severity

High 27% Low 73%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 11 secuirty vulnerabilities.


1) Unchecked Return Value (CVE-ID: CVE-2025-11839)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to unchecked return value within the tg_tag_type() function in prdbg.c. A local user can pass specially crafted input to the application and perform a denial of service attack.


2) Buffer overflow (CVE-ID: CVE-2025-11840)

The vulnerability allows a local user to perform a denial of service attack.

The vulnerability exists due to a boundary error within the vfinfo() function in ldmisc.c. A local user can trigger memory corruption and perform a denial of service attack.


3) Memory leak (CVE-ID: CVE-2025-8225)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due memory leak within the process_debug_info() function in binutils/dwarf.c. A local user can force the application to leak memory and perform denial of service attack.


4) Buffer overflow (CVE-ID: CVE-2025-5244)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the elf_gc_sweep() function in bfd/elflink.c. A local user can trigger memory corruption and execute arbitrary code with elevated privileges. 


5) Buffer overflow (CVE-ID: CVE-2025-5245)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the debug_type_samep() function in /binutils/debug.c. A local user can trigger memory corruption and execute arbitrary code with elevated privileges. 


6) Memory leak (CVE-ID: CVE-2025-3198)

The vulnerability allows a remote attacker to perform DoS attack on the target system.

The vulnerability exists due memory leak within the display_info() function in binutils/bucomm.c. A remote attacker can force the application to leak memory and perform denial of service attack.


7) Buffer overflow (CVE-ID: CVE-2025-1182)

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error within the bfd_elf_reloc_symbol_deleted_p() function in bfd/elflink.c within the ld binary. A remote attacker can pass specially crafted input to the binary, trigger memory corruption and execute arbitrary code on the target system.


8) Buffer overflow (CVE-ID: CVE-2025-1181)

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error within the _bfd_elf_gc_mark_rsec() function in bfd/elflink.c within the ld binary. A remote attacker can pass specially crafted input to the binary, trigger memory corruption and execute arbitrary code on the target system.


9) Buffer overflow (CVE-ID: CVE-2025-1153)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the bfd_set_format() function in format.c. A local user can trigger memory corruption and execute arbitrary code on the target system.



10) Stack-based buffer overflow (CVE-ID: CVE-2025-0840)

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error within the disassemble_bytes() function in binutils/objdump.c within the nm binary. A remote attacker can pass specially crafted input to the application, trigger a stack-based buffer overflow and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.


11) Heap-based buffer overflow (CVE-ID: CVE-2025-7545)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the copy_section() function in binutils/objcopy.c. A local user can trigger a heap-based buffer overflow and execute arbitrary code on the target system.


Remediation

Install update from vendor's website.

References