binutils (SUSE:Enterprise Storage 7.1) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Enterprise Storage 7.1 package binutils, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (47)
CVE-2020-19726 — CVSS 8.8 (high): An issue was discovered in binutils libbfd.c 2.36 relating to the auxiliary symbol data allows attackers to read or write to system memory…
CVE-2022-47695 — CVSS 7.8 (high): An issue was discovered Binutils objdump before 2.39.3 allows attackers to cause a denial of service or other unspecified impacts via…
CVE-2022-44840 — CVSS 7.8 (high): Heap buffer overflow vulnerability in binutils readelf before 2.40 via function find_section_in_set in file readelf.c.
CVE-2022-47673 — CVSS 7.8 (high): An issue was discovered in Binutils addr2line before 2.39.3, function parse_module contains multiple out of bound reads which may cause a…
CVE-2022-47696 — CVSS 7.8 (high): An issue was discovered Binutils objdump before 2.39.3 allows attackers to cause a denial of service or other unspecified impacts via…
CVE-2022-45703 — CVSS 7.8 (high): Heap buffer overflow vulnerability in binutils readelf before 2.40 via function display_debug_section in file readelf.c.
CVE-2023-1972 — CVSS 6.5 (medium): A potential heap based buffer overflow was found in _bfd_elf_slurp_version_tables() in bfd/elf.c. This may lead to loss of availability.
CVE-2021-32256 — CVSS 6.5 (medium): An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.36. It is a stack-overflow issue in demangle_type in…
CVE-2025-1178 — CVSS 5.6 (medium): A vulnerability was found in GNU Binutils 2.43. It has been declared as problematic. Affected by this vulnerability is the function…
CVE-2022-48063 — CVSS 5.5 (medium): GNU Binutils before 2.40 was discovered to contain an excessive memory consumption vulnerability via the function load_separate_debug_files…
CVE-2022-35205 — CVSS 5.5 (medium): An issue was discovered in Binutils readelf 2.38.50, reachable assertion failure in function display_debug_names allows attackers to cause…
CVE-2022-35206 — CVSS 5.5 (medium): Null pointer dereference vulnerability in Binutils readelf 2.38.50 via function read_and_display_attr_value in file dwarf.c.
CVE-2022-4285 — CVSS 5.5 (medium): An illegal memory access flaw was found in the binutils package. Parsing an ELF file containing corrupt symbol version information may…
CVE-2022-48064 — CVSS 5.5 (medium): GNU Binutils before 2.40 was discovered to contain an excessive memory consumption vulnerability via the function bfd_dwarf2_find_nearest_li…
CVE-2022-48065 — CVSS 5.5 (medium): GNU Binutils before 2.40 was discovered to contain a memory leak vulnerability var the function find_abstract_instance in dwarf2.c.
CVE-2025-7545 — CVSS 5.3 (medium): A vulnerability classified as problematic was found in GNU Binutils 2.45. Affected by this vulnerability is the function copy_section of…
CVE-2025-5245 — CVSS 5.3 (medium): A vulnerability classified as critical has been found in GNU Binutils up to 2.44. This affects the function debug_type_samep of the file…
CVE-2025-5244 — CVSS 5.3 (medium): A vulnerability was found in GNU Binutils up to 2.44. It has been rated as critical. Affected by this issue is the function elf_gc_sweep of…
CVE-2025-7546 — CVSS 5.3 (medium): A vulnerability, which was classified as problematic, has been found in GNU Binutils 2.45. Affected by this issue is the function…
CVE-2025-11083 — CVSS 5.3 (medium): A vulnerability has been found in GNU Binutils 2.45. The affected element is the function elf_swap_shdr in the library bfd/elfcode.h of the…
CVE-2025-1179 — CVSS 5.0 (medium): A vulnerability was found in GNU Binutils 2.43. It has been rated as critical. Affected by this issue is the function bfd_putl64 of the…
CVE-2025-0840 — CVSS 5.0 (medium): A vulnerability, which was classified as problematic, was found in GNU Binutils up to 2.43. This affects the function disassemble_bytes of…
CVE-2025-1176 — CVSS 5.0 (medium): A vulnerability was found in GNU Binutils 2.43 and classified as critical. This issue affects the function _bfd_elf_gc_mark_rsec of the…
CVE-2025-1181 — CVSS 5.0 (medium): A vulnerability classified as critical was found in GNU Binutils 2.43. This vulnerability affects the function _bfd_elf_gc_mark_rsec of the…
CVE-2025-1182 — CVSS 5.0 (medium): A vulnerability, which was classified as critical, was found in GNU Binutils 2.43. Affected is the function bfd_elf_reloc_symbol_deleted_p…
CVE-2023-25588 — CVSS 4.7 (medium): A flaw was found in Binutils. The field `the_bfd` of `asymbol`struct is uninitialized in the `bfd_mach_o_get_synthetic_symtab` function…
CVE-2023-25585 — CVSS 4.7 (medium): A flaw was found in Binutils. The use of an uninitialized field in the struct module *module may lead to application crash and local denial…
CVE-2023-0687 — CVSS 4.6 (medium): A vulnerability was found in GNU C Library 2.38. It has been declared as critical. This vulnerability affects the function __monstartup of…
CVE-2025-3198 — CVSS 3.3 (low): A vulnerability has been found in GNU Binutils 2.43/2.44 and classified as problematic. Affected by this vulnerability is the function…
CVE-2025-11414 — CVSS 3.3 (low): A vulnerability was determined in GNU Binutils 2.45. Affected by this vulnerability is the function get_link_hash_entry of the file…
CVE-2025-11494 — CVSS 3.3 (low): A vulnerability was found in GNU Binutils 2.45. Impacted is the function _bfd_x86_elf_late_size_sections of the file bfd/elfxx-x86.c of the…
CVE-2025-11413 — CVSS 3.3 (low): A vulnerability was found in GNU Binutils 2.45. Affected is the function elf_link_add_object_symbols of the file bfd/elflink.c of the…
CVE-2025-11495 — CVSS 3.3 (low): A vulnerability was determined in GNU Binutils 2.45. The affected element is the function elf_x86_64_relocate_section of the file…
CVE-2025-11412 — CVSS 3.3 (low): A vulnerability has been found in GNU Binutils 2.45. This impacts the function bfd_elf_gc_record_vtentry of the file bfd/elflink.c of the…
CVE-2025-8225 — CVSS 3.3 (low): A vulnerability was found in GNU Binutils 2.44 and classified as problematic. This issue affects the function process_debug_info of the…
CVE-2025-8224 — CVSS 3.3 (low): A vulnerability has been found in GNU Binutils 2.44 and classified as problematic. This vulnerability affects the function…
CVE-2025-1147 — CVSS 3.1 (low): A vulnerability has been found in GNU Binutils 2.43 and classified as problematic. Affected by this vulnerability is the function…
CVE-2025-1149 — CVSS 3.1 (low): A vulnerability was found in GNU Binutils 2.43. It has been classified as problematic. This affects the function xstrdup of the file…
CVE-2025-1150 — CVSS 3.1 (low): A vulnerability was found in GNU Binutils 2.43. It has been declared as problematic. This vulnerability affects the function bfd_malloc of…
CVE-2025-1151 — CVSS 3.1 (low): A vulnerability was found in GNU Binutils 2.43. It has been rated as problematic. This issue affects the function xmemdup of the file…
CVE-2025-1152 — CVSS 3.1 (low): A vulnerability classified as problematic has been found in GNU Binutils 2.43. Affected is the function xstrdup of the file xstrdup.c of…
CVE-2025-1153 — CVSS 3.1 (low): A vulnerability classified as problematic was found in GNU Binutils 2.43/2.44. Affected by this vulnerability is the function…
CVE-2025-1180 — CVSS 3.1 (low): A vulnerability classified as problematic has been found in GNU Binutils 2.43. This affects the function _bfd_elf_write_section_eh_frame of…
CVE-2025-1148 — CVSS 3.1 (low): A vulnerability was found in GNU Binutils 2.43 and classified as problematic. Affected by this issue is the function link_order_scan of the…
CVE-2023-25587: Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation…
CVE-2023-2222: Rejected reason: This was deemed not a security vulnerability by upstream.