CVE-2025-69649

CVE-2025-69649

Name

CVE-2025-69649

Description

GNU Binutils thru 2.46 readelf contains a null pointer dereference vulnerability when processing a crafted ELF binary with malformed header fields. During relocation processing, an invalid or null section pointer may be passed into display_relocations(), resulting in a segmentation fault (SIGSEGV) and abrupt termination. No evidence of memory corruption beyond the null pointer dereference, nor any possibility of code execution, was observed.

NVD Severity

unknown

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
cve@mitre.org	https://sourceware.org/bugzilla/show_bug.cgi?id=33697
cve@mitre.org	https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=66a3492ce68e1ae45b2489bd9a815c39ea5d7f66

Type

URI

cve@mitre.org

https://sourceware.org/bugzilla/show_bug.cgi?id=33697

cve@mitre.org

https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=66a3492ce68e1ae45b2489bd9a815c39ea5d7f66

CPE URI	Source package	Min version	Max version
`cpe:2.3:a:gnu:binutils::::::::`	binutils	>= None	<= 2.46

CPE URI

Source package

Min version

Max version

cpe:2.3:a:gnu:binutils:*:*:*:*:*:*:*:*

binutils

>= None

<= 2.46

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
binutils	edge-main	2.45.1-r1	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	edge-main	2.45.1-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	edge-main	2.45-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	edge-main	2.44-r4	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	edge-main	2.44-r3	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	edge-main	2.44-r2	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	edge-main	2.44-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	edge-main	2.43.1-r1	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	edge-main	2.40-r12	Ariadne Conill <ariadne@dereferenced.org>	possibly vulnerable
binutils	edge-main	2.40-r11	Ariadne Conill <ariadne@dereferenced.org>	possibly vulnerable
binutils	edge-main	2.40-r10	Ariadne Conill <ariadne@dereferenced.org>	possibly vulnerable
binutils	edge-main	2.40-r8	Ariadne Conill <ariadne@dereferenced.org>	possibly vulnerable
binutils	edge-main	2.40-r7	Ariadne Conill <ariadne@dereferenced.org>	possibly vulnerable
binutils	edge-main	2.40-r6	Ariadne Conill <ariadne@dereferenced.org>	possibly vulnerable
binutils	edge-main	2.40-r0	Ariadne Conill <ariadne@dereferenced.org>	possibly vulnerable
binutils	edge-main	2.39-r3	Ariadne Conill <ariadne@dereferenced.org>	possibly vulnerable
binutils	edge-main	2.39-r2	Ariadne Conill <ariadne@dereferenced.org>	possibly vulnerable
binutils	edge-main	2.39-r1	Ariadne Conill <ariadne@dereferenced.org>	possibly vulnerable
binutils	edge-main	2.39-r0	None	possibly vulnerable
binutils	edge-main	2.35.2-r2	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	edge-main	2.35.2-r1	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	edge-main	2.32-r0	None	possibly vulnerable
binutils	edge-main	2.28-r1	None	possibly vulnerable
binutils	3.23-main	2.45.1-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	3.22-main	2.44-r3	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	3.22-main	2.44-r2	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	3.22-main	2.44-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	3.22-main	2.40-r10	None	possibly vulnerable
binutils	3.22-main	2.40-r0	None	possibly vulnerable
binutils	3.22-main	2.39-r2	None	possibly vulnerable
binutils	3.22-main	2.39-r0	None	possibly vulnerable
binutils	3.22-main	2.35.2-r1	None	possibly vulnerable
binutils	3.22-main	2.32-r0	None	possibly vulnerable
binutils	3.22-main	2.28-r1	None	possibly vulnerable
binutils	3.21-main	2.43.1-r3	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	3.21-main	2.43.1-r2	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	3.21-main	2.43.1-r1	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	3.21-main	2.40-r10	None	possibly vulnerable
binutils	3.21-main	2.40-r0	None	possibly vulnerable
binutils	3.21-main	2.39-r2	None	possibly vulnerable
binutils	3.21-main	2.39-r0	None	possibly vulnerable
binutils	3.21-main	2.35.2-r1	None	possibly vulnerable
binutils	3.21-main	2.32-r0	None	possibly vulnerable
binutils	3.21-main	2.28-r1	None	possibly vulnerable
binutils	3.20-main	2.42-r1	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	3.20-main	2.42-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	3.20-main	2.40-r10	None	possibly vulnerable
binutils	3.20-main	2.40-r0	None	possibly vulnerable
binutils	3.20-main	2.39-r2	None	possibly vulnerable
binutils	3.20-main	2.39-r0	None	possibly vulnerable
binutils	3.20-main	2.35.2-r1	None	possibly vulnerable
binutils	3.20-main	2.32-r0	None	possibly vulnerable
binutils	3.20-main	2.28-r1	None	possibly vulnerable
binutils	3.19-main	2.41-r1	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	3.19-main	2.41-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
binutils	3.19-main	2.40-r10	None	possibly vulnerable
binutils	3.19-main	2.40-r0	None	possibly vulnerable
binutils	3.19-main	2.39-r2	None	possibly vulnerable
binutils	3.19-main	2.39-r0	None	possibly vulnerable
binutils	3.19-main	2.35.2-r1	None	possibly vulnerable
binutils	3.19-main	2.32-r0	None	possibly vulnerable
binutils	3.19-main	2.28-r1	None	possibly vulnerable

Source package

Branch

Version

Maintainer

Status

References

Match rules

Vulnerable and fixed packages