CVE-2025-11412

EUVD-2025-31867
A vulnerability has been found in GNU Binutils 2.45. This impacts the function bfd_elf_gc_record_vtentry of the file bfd/elflink.c of the component Linker. The manipulation leads to out-of-bounds read. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The identifier of the patch is 047435dd988a3975d40c6626a8f739a0b2e154bc. To fix this issue, it is recommended to deploy a patch.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
3.3 LOW
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
Base Score
CVSS 3.x
EPSS Score
Percentile: 8%
Affected Products (NVD)
VendorProductVersion
gnubinutils
2.45
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
SiemensSIMATIC S7-1500 CPU 1518-4 PN\/DP MFP
V3.1.5 ≤
𝑥
< *
ADP
SiemensSIMATIC S7-1500 CPU 1518-4 PN\/DP MFP
V3.1.5 ≤
𝑥
< *
ADP
SiemensSIMATIC S7-1500 CPU 1518F-4 PN\/DP MFP
V3.1.5 ≤
𝑥
< *
ADP
SiemensSIMATIC S7-1500 CPU 1518F-4 PN\/DP MFP
V3.1.5 ≤
𝑥
< *
ADP
SiemensSIPLUS S7-1500 CPU 1518-4 PN\/DP MFP
V3.1.5 ≤
𝑥
< *
ADP
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
binutils
suse enterprise desktop 15 SP6
2.45-150100.7.57.1
fixed
suse enterprise desktop 15 SP7
2.45-150100.7.57.1
fixed
suse enterprise sap 15 SP6
2.45-150100.7.57.1
fixed
suse enterprise sap 15 SP7
2.45-150100.7.57.1
fixed
suse enterprise server 15 SP2
2.45-150100.7.57.1
fixed
suse enterprise server 15 SP3
2.45-150100.7.57.1
fixed
suse enterprise server 15 SP4
2.45-150100.7.57.1
fixed
suse enterprise server 15 SP5
2.45-150100.7.57.1
fixed
suse enterprise server 15 SP6
2.45-150100.7.57.1
fixed
suse enterprise server 15 SP7
2.45-150100.7.57.1
fixed
binutils-devel
suse enterprise desktop 15 SP6
2.45-150100.7.57.1
fixed
suse enterprise desktop 15 SP7
2.45-150100.7.57.1
fixed
suse enterprise sap 15 SP6
2.45-150100.7.57.1
fixed
suse enterprise sap 15 SP7
2.45-150100.7.57.1
fixed
suse enterprise server 15 SP2
2.45-150100.7.57.1
fixed
suse enterprise server 15 SP3
2.45-150100.7.57.1
fixed
suse enterprise server 15 SP4
2.45-150100.7.57.1
fixed
suse enterprise server 15 SP5
2.45-150100.7.57.1
fixed
suse enterprise server 15 SP6
2.45-150100.7.57.1
fixed
suse enterprise server 15 SP7
2.45-150100.7.57.1
fixed
binutils-devel-32bit
suse enterprise desktop 15 SP6
2.45-150100.7.57.1
fixed
suse enterprise desktop 15 SP7
2.45-150100.7.57.1
fixed
suse enterprise sap 15 SP6
2.45-150100.7.57.1
fixed
suse enterprise sap 15 SP7
2.45-150100.7.57.1
fixed
suse enterprise server 15 SP2
2.45-150100.7.57.1
fixed
suse enterprise server 15 SP3
2.45-150100.7.57.1
fixed
suse enterprise server 15 SP4
2.45-150100.7.57.1
fixed
suse enterprise server 15 SP5
2.45-150100.7.57.1
fixed
suse enterprise server 15 SP6
2.45-150100.7.57.1
fixed
suse enterprise server 15 SP7
2.45-150100.7.57.1
fixed
libctf-nobfd0
suse enterprise desktop 15 SP6
2.45-150100.7.57.1
fixed
suse enterprise desktop 15 SP7
2.45-150100.7.57.1
fixed
suse enterprise sap 15 SP6
2.45-150100.7.57.1
fixed
suse enterprise sap 15 SP7
2.45-150100.7.57.1
fixed
suse enterprise server 15 SP2
2.45-150100.7.57.1
fixed
suse enterprise server 15 SP3
2.45-150100.7.57.1
fixed
suse enterprise server 15 SP4
2.45-150100.7.57.1
fixed
suse enterprise server 15 SP5
2.45-150100.7.57.1
fixed
suse enterprise server 15 SP6
2.45-150100.7.57.1
fixed
suse enterprise server 15 SP7
2.45-150100.7.57.1
fixed
libctf0
suse enterprise desktop 15 SP6
2.45-150100.7.57.1
fixed
suse enterprise desktop 15 SP7
2.45-150100.7.57.1
fixed
suse enterprise sap 15 SP6
2.45-150100.7.57.1
fixed
suse enterprise sap 15 SP7
2.45-150100.7.57.1
fixed
suse enterprise server 15 SP2
2.45-150100.7.57.1
fixed
suse enterprise server 15 SP3
2.45-150100.7.57.1
fixed
suse enterprise server 15 SP4
2.45-150100.7.57.1
fixed
suse enterprise server 15 SP5
2.45-150100.7.57.1
fixed
suse enterprise server 15 SP6
2.45-150100.7.57.1
fixed
suse enterprise server 15 SP7
2.45-150100.7.57.1
fixed
libucm-devel
suse enterprise desktop 15 SP6
1.15.0-150600.3.5.2
fixed
suse enterprise desktop 15 SP7
1.17.0-150700.4.2.7
fixed
suse enterprise sap 15 SP6
1.15.0-150600.3.5.2
fixed
suse enterprise sap 15 SP7
1.17.0-150700.4.2.7
fixed
suse enterprise server 15 SP2
1.6.0-150200.3.2.1
fixed
suse enterprise server 15 SP3
1.9.0-150300.4.2.5
fixed
suse enterprise server 15 SP4
1.11.1-150400.4.2.1
fixed
suse enterprise server 15 SP5
1.13.1-150500.4.2.5
fixed
suse enterprise server 15 SP6
1.15.0-150600.3.5.2
fixed
suse enterprise server 15 SP7
1.17.0-150700.4.2.7
fixed
libucm0
suse enterprise desktop 15 SP6
1.15.0-150600.3.5.2
fixed
suse enterprise desktop 15 SP7
1.17.0-150700.4.2.7
fixed
suse enterprise sap 15 SP6
1.15.0-150600.3.5.2
fixed
suse enterprise sap 15 SP7
1.17.0-150700.4.2.7
fixed
suse enterprise server 15 SP2
1.6.0-150200.3.2.1
fixed
suse enterprise server 15 SP3
1.9.0-150300.4.2.5
fixed
suse enterprise server 15 SP4
1.11.1-150400.4.2.1
fixed
suse enterprise server 15 SP5
1.13.1-150500.4.2.5
fixed
suse enterprise server 15 SP6
1.15.0-150600.3.5.2
fixed
suse enterprise server 15 SP7
1.17.0-150700.4.2.7
fixed
libucp-devel
suse enterprise desktop 15 SP6
1.15.0-150600.3.5.2
fixed
suse enterprise desktop 15 SP7
1.17.0-150700.4.2.7
fixed
suse enterprise sap 15 SP6
1.15.0-150600.3.5.2
fixed
suse enterprise sap 15 SP7
1.17.0-150700.4.2.7
fixed
suse enterprise server 15 SP2
1.6.0-150200.3.2.1
fixed
suse enterprise server 15 SP3
1.9.0-150300.4.2.5
fixed
suse enterprise server 15 SP4
1.11.1-150400.4.2.1
fixed
suse enterprise server 15 SP5
1.13.1-150500.4.2.5
fixed
suse enterprise server 15 SP6
1.15.0-150600.3.5.2
fixed
suse enterprise server 15 SP7
1.17.0-150700.4.2.7
fixed
libucp0
suse enterprise desktop 15 SP6
1.15.0-150600.3.5.2
fixed
suse enterprise desktop 15 SP7
1.17.0-150700.4.2.7
fixed
suse enterprise sap 15 SP6
1.15.0-150600.3.5.2
fixed
suse enterprise sap 15 SP7
1.17.0-150700.4.2.7
fixed
suse enterprise server 15 SP2
1.6.0-150200.3.2.1
fixed
suse enterprise server 15 SP3
1.9.0-150300.4.2.5
fixed
suse enterprise server 15 SP4
1.11.1-150400.4.2.1
fixed
suse enterprise server 15 SP5
1.13.1-150500.4.2.5
fixed
suse enterprise server 15 SP6
1.15.0-150600.3.5.2
fixed
suse enterprise server 15 SP7
1.17.0-150700.4.2.7
fixed
libucs-devel
suse enterprise desktop 15 SP6
1.15.0-150600.3.5.2
fixed
suse enterprise desktop 15 SP7
1.17.0-150700.4.2.7
fixed
suse enterprise sap 15 SP6
1.15.0-150600.3.5.2
fixed
suse enterprise sap 15 SP7
1.17.0-150700.4.2.7
fixed
suse enterprise server 15 SP2
1.6.0-150200.3.2.1
fixed
suse enterprise server 15 SP3
1.9.0-150300.4.2.5
fixed
suse enterprise server 15 SP4
1.11.1-150400.4.2.1
fixed
suse enterprise server 15 SP5
1.13.1-150500.4.2.5
fixed
suse enterprise server 15 SP6
1.15.0-150600.3.5.2
fixed
suse enterprise server 15 SP7
1.17.0-150700.4.2.7
fixed
libucs0
suse enterprise desktop 15 SP6
1.15.0-150600.3.5.2
fixed
suse enterprise desktop 15 SP7
1.17.0-150700.4.2.7
fixed
suse enterprise sap 15 SP6
1.15.0-150600.3.5.2
fixed
suse enterprise sap 15 SP7
1.17.0-150700.4.2.7
fixed
suse enterprise server 15 SP2
1.6.0-150200.3.2.1
fixed
suse enterprise server 15 SP3
1.9.0-150300.4.2.5
fixed
suse enterprise server 15 SP4
1.11.1-150400.4.2.1
fixed
suse enterprise server 15 SP5
1.13.1-150500.4.2.5
fixed
suse enterprise server 15 SP6
1.15.0-150600.3.5.2
fixed
suse enterprise server 15 SP7
1.17.0-150700.4.2.7
fixed
libuct-devel
suse enterprise desktop 15 SP6
1.15.0-150600.3.5.2
fixed
suse enterprise desktop 15 SP7
1.17.0-150700.4.2.7
fixed
suse enterprise sap 15 SP6
1.15.0-150600.3.5.2
fixed
suse enterprise sap 15 SP7
1.17.0-150700.4.2.7
fixed
suse enterprise server 15 SP2
1.6.0-150200.3.2.1
fixed
suse enterprise server 15 SP3
1.9.0-150300.4.2.5
fixed
suse enterprise server 15 SP4
1.11.1-150400.4.2.1
fixed
suse enterprise server 15 SP5
1.13.1-150500.4.2.5
fixed
suse enterprise server 15 SP6
1.15.0-150600.3.5.2
fixed
suse enterprise server 15 SP7
1.17.0-150700.4.2.7
fixed
libuct0
suse enterprise desktop 15 SP6
1.15.0-150600.3.5.2
fixed
suse enterprise desktop 15 SP7
1.17.0-150700.4.2.7
fixed
suse enterprise sap 15 SP6
1.15.0-150600.3.5.2
fixed
suse enterprise sap 15 SP7
1.17.0-150700.4.2.7
fixed
suse enterprise server 15 SP2
1.6.0-150200.3.2.1
fixed
suse enterprise server 15 SP3
1.9.0-150300.4.2.5
fixed
suse enterprise server 15 SP4
1.11.1-150400.4.2.1
fixed
suse enterprise server 15 SP5
1.13.1-150500.4.2.5
fixed
suse enterprise server 15 SP6
1.15.0-150600.3.5.2
fixed
suse enterprise server 15 SP7
1.17.0-150700.4.2.7
fixed
openucx-tools
suse enterprise desktop 15 SP6
1.15.0-150600.3.5.2
fixed
suse enterprise desktop 15 SP7
1.17.0-150700.4.2.7
fixed
suse enterprise sap 15 SP6
1.15.0-150600.3.5.2
fixed
suse enterprise sap 15 SP7
1.17.0-150700.4.2.7
fixed
suse enterprise server 15 SP2
1.6.0-150200.3.2.1
fixed
suse enterprise server 15 SP3
1.9.0-150300.4.2.5
fixed
suse enterprise server 15 SP4
1.11.1-150400.4.2.1
fixed
suse enterprise server 15 SP5
1.13.1-150500.4.2.5
fixed
suse enterprise server 15 SP6
1.15.0-150600.3.5.2
fixed
suse enterprise server 15 SP7
1.17.0-150700.4.2.7
fixed
perf
suse enterprise server 15 SP2
5.3.18-150200.25.11.1
fixed
suse enterprise server 15 SP3
5.3.18-150300.38.7.1
fixed
suse enterprise server 15 SP4
5.14.21-150400.44.20.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.52.5.1
fixed
perf-devel
suse enterprise server 15 SP4
5.14.21-150400.44.20.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.52.5.1
fixed
Common Weakness Enumeration
References
https://sourceware.org/bugzilla/attachment.cgi?id=16378
https://sourceware.org/bugzilla/show_bug.cgi?id=33452
https://sourceware.org/bugzilla/show_bug.cgi?id=33452#c8
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=047435dd988a3975d40c6626a8f739a0b2e154bc
https://vuldb.com/?ctiid.327348
https://vuldb.com/?id.327348
https://www.gnu.org/
https://cert-portal.siemens.com/productcert/html/ssa-082556.html
https://sourceware.org/bugzilla/show_bug.cgi?id=33452