binutils-devel (AlmaLinux:8) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the AlmaLinux:8 package binutils-devel, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (8)
CVE-2018-12699 — CVSS 9.8 (critical): finish_stab in stabs.c in GNU Binutils 2.30 allows attackers to cause a denial of service (heap-based buffer overflow) or possibly have…
CVE-2021-42574 — CVSS 8.3 (high): An issue was discovered in the Bidirectional Algorithm in the Unicode Specification through 14.0. It permits the visual reordering of…
CVE-2021-20197 — CVSS 6.3 (medium): There is an open race window when writing output in the following utilities in GNU binutils version 2.35 and earlier:ar, objcopy, strip…
CVE-2021-20284 — CVSS 5.5 (medium): A flaw was found in GNU Binutils 2.35.1, where there is a heap-based buffer overflow in _bfd_elf_slurp_secondary_reloc_section in elf.c due…
CVE-2022-4285 — CVSS 5.5 (medium): An illegal memory access flaw was found in the binutils package. Parsing an ELF file containing corrupt symbol version information may…
CVE-2025-11083 — CVSS 5.3 (medium): A vulnerability has been found in GNU Binutils 2.45. The affected element is the function elf_swap_shdr in the library bfd/elfcode.h of the…
CVE-2020-35448 — CVSS 3.3 (low): An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.35.1. A heap-based…
CVE-2021-3487: Rejected reason: Non Security Issue. See the binutils security policy for more details, https://sourceware.org/cgit/binutils-gdb/tree/binuti…