CVE-2025-7546— GNU Binutils elf.c bfd_elf_set_group_contents out-of-bounds write

GNU Binutils elf.c bfd_elf_set_group_contents out-of-bounds write

A vulnerability, which was classified as problematic, has been found in GNU Binutils 2.45. Affected by this issue is the function bfd_elf_set_group_contents of the file bfd/elf.c. The manipulation leads to out-of-bounds write. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used. The name of the patch is 41461010eb7c79fee7a9d5f6209accdaac66cc6b. It is recommended to apply a patch to fix this issue.

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

跨界内存写

GNU Binutils 缓冲区错误漏洞

GNU Binutils（GNU Binary Utilities）是美国GNU社区的开发的一组编程语言工具程序。该程序主要用于处理多种格式的目标文件，并提供有连接器、汇编器和其他用于目标文件和档案的工具。 GNU Binutils（GNU Binary Utilities） 2.45版本存在缓冲区错误漏洞，该漏洞源于对文件bfd/elf.c中函数bfd_elf_set_group_contents的错误操作导致越界写入。

N/A

N/A