CLSA-2026-1778237657

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2026-1778237657.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2026-1778237657
Upstream
  • CVE-2026-3441
  • CVE-2026-3442
Published
2026-05-08T10:54:21Z
Modified
2026-06-01T00:32:38.989654658Z
Summary
binutils: Fix of 4 CVEs
Details
  • CVE-2025-5244: fix ld segfault on fuzzed object via NULL group head
  • CVE-2025-5245: fix segv in objdump debugtypesamep and debugwritetype on incomplete enum types
  • CVE-2026-3441: fix xcofflink XTYLD xscnlen out-of-bounds index
  • CVE-2026-3442: fix xcofflink r_symndx out-of-bounds sym hash index
References

Affected packages

TuxCare:CentOS:8.4 / binutils

Package

Name
binutils
Purl
pkg:rpm/tuxcare/binutils?distro=centos-8.4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.30-93.el8_4.tuxcare.els12

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2026-1778237657.json"

TuxCare:CentOS:8.4 / binutils-devel

Package

Name
binutils-devel
Purl
pkg:rpm/tuxcare/binutils-devel?distro=centos-8.4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.30-93.el8_4.tuxcare.els12

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2026-1778237657.json"