CVE-2026-6844— Binutils: binutils: denial of service vulnerabilities in readelf via crafted elf files
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-6844
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Binutils: binutils: denial of service vulnerabilities in readelf via crafted elf files
Source: NVD (National Vulnerability Database)
Vulnerability Description
A flaw was found in the `readelf` utility of the binutils package. A local attacker could exploit two Denial of Service (DoS) vulnerabilities by providing a specially crafted Executable and Linkable Format (ELF) file. One vulnerability, a resource exhaustion (CWE-400), can lead to an out-of-memory condition. The other, a null pointer dereference (CWE-476), can cause a segmentation fault. Both issues can result in the `readelf` utility becoming unresponsive or crashing, leading to a denial of service.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
未加控制的资源消耗(资源穷尽)
Source: NVD (National Vulnerability Database)
Vulnerability Title
Red Hat Enterprise Linux 10 资源管理错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Red Hat Enterprise Linux 10是美国红帽(Red Hat)公司的一套面向企业用户的Linux操作系统。 Red Hat Enterprise Linux 10存在资源管理错误漏洞,该漏洞源于本地攻击者可通过提供特制ELF文件利用两个拒绝服务漏洞,资源耗尽可导致内存不足,空指针取消引用可导致分段错误,使readelf无响应或崩溃。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Red Hat | Red Hat Enterprise Linux 10 | - | cpe:/o:redhat:enterprise_linux:10 | |
| Red Hat | Red Hat Enterprise Linux 10 | - | cpe:/o:redhat:enterprise_linux:10 | |
| Red Hat | Red Hat Enterprise Linux 10 | - | cpe:/o:redhat:enterprise_linux:10 | |
| Red Hat | Red Hat Enterprise Linux 10 | - | cpe:/o:redhat:enterprise_linux:10 | |
| Red Hat | Red Hat Enterprise Linux 7 | - | cpe:/o:redhat:enterprise_linux:7 | |
| Red Hat | Red Hat Enterprise Linux 8 | - | cpe:/o:redhat:enterprise_linux:8 | |
| Red Hat | Red Hat Enterprise Linux 8 | - | cpe:/o:redhat:enterprise_linux:8 | |
| Red Hat | Red Hat Enterprise Linux 8 | - | cpe:/o:redhat:enterprise_linux:8 | |
| Red Hat | Red Hat Enterprise Linux 8 | - | cpe:/o:redhat:enterprise_linux:8 | |
| Red Hat | Red Hat Enterprise Linux 8 | - | cpe:/o:redhat:enterprise_linux:8 | |
| Red Hat | Red Hat Enterprise Linux 8 | - | cpe:/o:redhat:enterprise_linux:8 | |
| Red Hat | Red Hat Enterprise Linux 8 | - | cpe:/o:redhat:enterprise_linux:8 | |
| Red Hat | Red Hat Enterprise Linux 9 | - | cpe:/o:redhat:enterprise_linux:9 | |
| Red Hat | Red Hat Enterprise Linux 9 | - | cpe:/o:redhat:enterprise_linux:9 | |
| Red Hat | Red Hat Enterprise Linux 9 | - | cpe:/o:redhat:enterprise_linux:9 | |
| Red Hat | Red Hat Enterprise Linux 9 | - | cpe:/o:redhat:enterprise_linux:9 | |
| Red Hat | Red Hat Enterprise Linux 9 | - | cpe:/o:redhat:enterprise_linux:9 | |
| Red Hat | Red Hat Hardened Images | - | cpe:/a:redhat:hummingbird:1 | |
| Red Hat | Red Hat OpenShift Container Platform 4 | - | cpe:/a:redhat:openshift:4 |
II. Public POCs for CVE-2026-6844
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-6844
请登录查看更多情报信息。
- 2460016 – (CVE-2026-6844) CVE-2026-6844 binutils: Binutils: Denial of Service vulnerabilities in readelf via crafted ELF filesissue-trackingx_refsource_REDHAT
- https://nvd.nist.gov/vuln/detail/CVE-2026-6844
Same Patch Batch · Red Hat · 2026-04-22 · 11 CVEs total
| CVE-2026-6859 | 8.8 HIGH | Instructlab: instructlab: arbitrary code execution due to hardcoded `trust_remote_code=tru |
| CVE-2026-6846 | 7.8 HIGH | Binutils: binutils: arbitrary code execution via malformed xcoff object file processing |
| CVE-2026-6857 | 7.5 HIGH | Camel-infinispan: camel-infinispan: remote code execution via unsafe deserialization |
| CVE-2026-6855 | 7.1 HIGH | Instructlab: instructlab: path traversal allows arbitrary directory creation and file writ |
| CVE-2026-6861 | 6.1 MEDIUM | Emacs: emacs: memory corruption vulnerability when processing svg css |
| CVE-2026-6862 | 5.5 MEDIUM | Efivar: efivar: denial of service due to stack overflow in device path node parsing |
| CVE-2026-6843 | 5.5 MEDIUM | Nano: nano: format string vulnerability leads to denial of service |
| CVE-2026-6848 | 5.4 MEDIUM | Quay: red hat quay: authentication bypass allows privileged actions without valid credenti |
| CVE-2026-6845 | 5.0 MEDIUM | Binutils: binutils: denial of service via crafted elf file |
| CVE-2026-6842 | 2.5 LOW | Nano: nano: local attacker can inject malicious .desktop launcher due to insecure director |
IV. Related Vulnerabilities
Same product: Red Hat Enterprise Linux 10
- CVE-2026-42011
Gnutls: gnutls: security bypass due to incorrect name constr - CVE-2026-42010
Gnutls: gnutls: authentication bypass via nul character in u - CVE-2026-6420
Keylime: keylime: security bypass due to hardcoded tpm quote - CVE-2026-34002
Xorg: xwayland: x.org x server: information disclosure or de - CVE-2026-34000
Xwayland: xorg: x.org x server: information disclosure and d
Same vendor: Red Hat
- CVE-2026-42011
Gnutls: gnutls: security bypass due to incorrect name constr - CVE-2026-42010
Gnutls: gnutls: authentication bypass via nul character in u - CVE-2026-6420
Keylime: keylime: security bypass due to hardcoded tpm quote - CVE-2026-34956
Openvswitch: open vswitch: denial of service via malformed f - CVE-2026-34002
Xorg: xwayland: x.org x server: information disclosure or de
Same weakness: CWE-400
- CVE-2026-8187
Open5GS UPF gtp-path.c _gtpv1_u_recv_cb resource consumption - CVE-2026-42343
FastGPT: Uncontrolled Resource Consumption leading to Sandbo - CVE-2026-42212
SolidCAM-GPPL-IDE: XML External Entity (XXE) and billion-lau - CVE-2026-32686
Unbounded exponent in decimal enables unauthenticated DoS - CVE-2026-20188
Cisco Crosswork Network Controller and Cisco Network Service
V. Comments for CVE-2026-6844
No comments yet