CVE-2025-69649

Severity CVSS v4.0:

Pending analysis

Type:

Unavailable / Other

Publication date:

06/03/2026

Last modified:

06/03/2026

Description

GNU Binutils thru 2.46 readelf contains a null pointer dereference vulnerability when processing a crafted ELF binary with malformed header fields. During relocation processing, an invalid or null section pointer may be passed into display_relocations(), resulting in a segmentation fault (SIGSEGV) and abrupt termination. No evidence of memory corruption beyond the null pointer dereference, nor any possibility of code execution, was observed.

Impact

References to Advisories, Solutions, and Tools

https://sourceware.org/bugzilla/show_bug.cgi?id=33697
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git%3Bh%3D66a3492ce68e1ae45b2489bd9a815c39ea5d7f66