VDB

CESS-2025-69645

CESS-2025-69645 PUBLISHED CVSS 5.5 MEDIUM

Binutils objdump contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF debug information. A logic error in the handling of DWARF compilation units can result in an invalid offset_size value being used inside byte_get_little_endian, leading to an abort (SIGABRT). The issue was observed in binutils 2.44. A local attacker can trigger the crash by supplying a malicious input file.

Risk Scores

CVSS 3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Timeline

  • Mar 6, 2026 CVE Published
Open in Interactive Console →
$ Console Community · 100/wk Open console ›