CLSA-2026-1775726631

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1775726631.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2026-1775726631
Upstream
  • CVE-2026-4647
Published
2026-04-24T09:04:21Z
Modified
2026-06-01T00:32:46.809443471Z
Summary
binutils: Fix of 9 CVEs
Details
  • CVE-2023-1972: fix heap buffer overflow in bfdelfslurpversion_tables
  • CVE-2025-11412: fix out-of-bounds read in bfdelfgcrecordvtentry
  • CVE-2025-11413: fix out-of-bounds read in elflinkaddobjectsymbols
  • CVE-2025-11839: fix abort in tgtagtype with fuzzed input
  • CVE-2025-11840: fix SEGV from NULL howto name in coff reloc processing
  • CVE-2025-3198: fix memory leak in objdump display_info
  • CVE-2025-69645: fix abort in bytegetlittle_endian from malformed DWARF
  • CVE-2025-69652: fix abort in readelf from malformed DWARF debug info
  • CVE-2026-4647: fix out-of-bounds read in XCOFF relocation processing
References

Affected packages

TuxCare:AlmaLinux:9.6
binutils

Package

Name
binutils
Purl
pkg:rpm/tuxcare/binutils?distro=almalinux-9.6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.35.2-63.el9.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1775726631.json"
binutils-devel

Package

Name
binutils-devel
Purl
pkg:rpm/tuxcare/binutils-devel?distro=almalinux-9.6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.35.2-63.el9.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1775726631.json"
binutils-gold

Package

Name
binutils-gold
Purl
pkg:rpm/tuxcare/binutils-gold?distro=almalinux-9.6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.35.2-63.el9.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1775726631.json"
cross-binutils-aarch64

Package

Name
cross-binutils-aarch64
Purl
pkg:rpm/tuxcare/cross-binutils-aarch64?distro=almalinux-9.6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.35.2-63.el9.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1775726631.json"
cross-binutils-ppc64le

Package

Name
cross-binutils-ppc64le
Purl
pkg:rpm/tuxcare/cross-binutils-ppc64le?distro=almalinux-9.6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.35.2-63.el9.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1775726631.json"
cross-binutils-s390x

Package

Name
cross-binutils-s390x
Purl
pkg:rpm/tuxcare/cross-binutils-s390x?distro=almalinux-9.6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.35.2-63.el9.tuxcare.els6

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1775726631.json"