CVE-2025-11840 | GNU Binutils 2.45 ldmisc.c vfinfo out-of-bounds (Bug 33455 / ID 16357)

A vulnerability described as problematic has been identified in GNU Binutils 2.45. The affected element is the function vfinfo of the file ldmisc.c. Executing manipulation can lead to out-of-bounds read.

The identification of this vulnerability is CVE-2025-11840. The attack can only be executed locally. Furthermore, there is an exploit available.

It is best practice to apply a patch to resolve this issue.VulDB Recent EntriesRead More