Medium severity5.3NVD Advisory· Published Sep 27, 2025· Updated May 12, 2026
CVE-2025-11082
CVE-2025-11082
Description
A flaw has been found in GNU Binutils 2.45. Impacted is the function _bfd_elf_parse_eh_frame of the file bfd/elf-eh-frame.c of the component Linker. Executing manipulation can lead to heap-based buffer overflow. The attack is restricted to local execution. The exploit has been published and may be used. This patch is called ea1a0737c7692737a644af0486b71e4a392cbca8. A patch should be applied to remediate this issue. The code maintainer replied with "[f]ixed for 2.46".
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
13- osv-coords11 versionspkg:apk/chainguard/binutilspkg:apk/chainguard/binutils-devpkg:apk/chainguard/binutils-docpkg:apk/chainguard/binutils-goldpkg:apk/wolfi/binutilspkg:apk/wolfi/binutils-devpkg:apk/wolfi/binutils-docpkg:apk/wolfi/binutils-goldpkg:rpm/almalinux/binutilspkg:rpm/almalinux/binutils-develpkg:rpm/almalinux/binutils-gold
< 2.45.1-r1+ 10 more
- (no CPE)range: < 2.45.1-r1
- (no CPE)range: < 2.45.1-r1
- (no CPE)range: < 2.45.1-r1
- (no CPE)range: < 2.45.1-r1
- (no CPE)range: < 2.45.1-r1
- (no CPE)range: < 2.45.1-r1
- (no CPE)range: < 2.45.1-r1
- (no CPE)range: < 2.45.1-r1
- (no CPE)range: < 2.41-58.el10_1.2.alma.1
- (no CPE)range: < 2.41-58.el10_1.2.alma.1
- (no CPE)range: < 2.41-58.el10_1.2.alma.1
Patches
Vulnerability mechanics
References
8- sourceware.org/bugzilla/show_bug.cginvdExploitIssue Tracking
- sourceware.org/bugzilla/show_bug.cginvdExploitIssue Tracking
- vuldb.comnvdThird Party AdvisoryVDB Entry
- vuldb.comnvdThird Party AdvisoryVDB Entry
- sourceware.org/bugzilla/attachment.cginvdBroken Link
- vuldb.comnvdPermissions RequiredVDB Entry
- www.gnu.orgnvdProduct
- cert-portal.siemens.com/productcert/html/ssa-082556.htmlnvd
News mentions
0No linked articles in our index yet.