CVE-2025-69648

CVE-2025-69648

Name

CVE-2025-69648

Description

GNU Binutils thru 2.45.1 readelf contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF .debug_rnglists data. A logic flaw in the DWARF parsing path causes readelf to repeatedly print the same warning message without making forward progress, resulting in a non-terminating output loop that requires manual interruption. No evidence of memory corruption or code execution was observed.

NVD Severity

unknown

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
cve@mitre.org	https://sourceware.org/bugzilla/show_bug.cgi?id=33641
cve@mitre.org	https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=598704a00cbac5e85c2bedd363357b5bf6fcee33

Type

URI

cve@mitre.org

https://sourceware.org/bugzilla/show_bug.cgi?id=33641

cve@mitre.org

https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=598704a00cbac5e85c2bedd363357b5bf6fcee33

CPE URI	Source package	Min version	Max version
`cpe:2.3:a:gnu:binutils::::::::`	binutils	>= None	<= 2.45.1

CPE URI

Source package

Min version

Max version

cpe:2.3:a:gnu:binutils:*:*:*:*:*:*:*:*

binutils

>= None

<= 2.45.1

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
binutils	edge-main	2.45.1-r1	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	edge-main	2.45.1-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	edge-main	2.45-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	edge-main	2.44-r4	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	edge-main	2.44-r3	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	edge-main	2.44-r2	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	edge-main	2.44-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	edge-main	2.43.1-r1	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	edge-main	2.40-r12	Ariadne Conill <ariadne@dereferenced.org>	possibly vulnerable
binutils	edge-main	2.40-r11	Ariadne Conill <ariadne@dereferenced.org>	possibly vulnerable
binutils	edge-main	2.40-r10	Ariadne Conill <ariadne@dereferenced.org>	possibly vulnerable
binutils	edge-main	2.40-r8	Ariadne Conill <ariadne@dereferenced.org>	possibly vulnerable
binutils	edge-main	2.40-r7	Ariadne Conill <ariadne@dereferenced.org>	possibly vulnerable
binutils	edge-main	2.40-r6	Ariadne Conill <ariadne@dereferenced.org>	possibly vulnerable
binutils	edge-main	2.40-r0	Ariadne Conill <ariadne@dereferenced.org>	possibly vulnerable
binutils	edge-main	2.39-r3	Ariadne Conill <ariadne@dereferenced.org>	possibly vulnerable
binutils	edge-main	2.39-r2	Ariadne Conill <ariadne@dereferenced.org>	possibly vulnerable
binutils	edge-main	2.39-r1	Ariadne Conill <ariadne@dereferenced.org>	possibly vulnerable
binutils	edge-main	2.39-r0	None	possibly vulnerable
binutils	edge-main	2.35.2-r2	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	edge-main	2.35.2-r1	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	edge-main	2.32-r0	None	possibly vulnerable
binutils	edge-main	2.28-r1	None	possibly vulnerable
binutils	3.23-main	2.45.1-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	3.22-main	2.44-r3	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	3.22-main	2.44-r2	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	3.22-main	2.44-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	3.22-main	2.40-r10	None	possibly vulnerable
binutils	3.22-main	2.40-r0	None	possibly vulnerable
binutils	3.22-main	2.39-r2	None	possibly vulnerable
binutils	3.22-main	2.39-r0	None	possibly vulnerable
binutils	3.22-main	2.35.2-r1	None	possibly vulnerable
binutils	3.22-main	2.32-r0	None	possibly vulnerable
binutils	3.22-main	2.28-r1	None	possibly vulnerable
binutils	3.21-main	2.43.1-r3	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	3.21-main	2.43.1-r2	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	3.21-main	2.43.1-r1	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	3.21-main	2.40-r10	None	possibly vulnerable
binutils	3.21-main	2.40-r0	None	possibly vulnerable
binutils	3.21-main	2.39-r2	None	possibly vulnerable
binutils	3.21-main	2.39-r0	None	possibly vulnerable
binutils	3.21-main	2.35.2-r1	None	possibly vulnerable
binutils	3.21-main	2.32-r0	None	possibly vulnerable
binutils	3.21-main	2.28-r1	None	possibly vulnerable
binutils	3.20-main	2.42-r1	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	3.20-main	2.42-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	3.20-main	2.40-r10	None	possibly vulnerable
binutils	3.20-main	2.40-r0	None	possibly vulnerable
binutils	3.20-main	2.39-r2	None	possibly vulnerable
binutils	3.20-main	2.39-r0	None	possibly vulnerable
binutils	3.20-main	2.35.2-r1	None	possibly vulnerable
binutils	3.20-main	2.32-r0	None	possibly vulnerable
binutils	3.20-main	2.28-r1	None	possibly vulnerable
binutils	3.19-main	2.41-r1	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	3.19-main	2.41-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	3.19-main	2.40-r10	None	possibly vulnerable
binutils	3.19-main	2.40-r0	None	possibly vulnerable
binutils	3.19-main	2.39-r2	None	possibly vulnerable
binutils	3.19-main	2.39-r0	None	possibly vulnerable
binutils	3.19-main	2.35.2-r1	None	possibly vulnerable
binutils	3.19-main	2.32-r0	None	possibly vulnerable
binutils	3.19-main	2.28-r1	None	possibly vulnerable

Source package

Branch

Version

Maintainer

Status

References

Match rules

Vulnerable and fixed packages