OESA-2025-1932
- Source
- https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2025-1932
- Import Source
- https://repo.openeuler.org/security/data/osv/OESA-2025-1932.json
- JSON Data
- https://api.osv.dev/v1/vulns/OESA-2025-1932
- Upstream
- Published
- 2025-08-01T13:03:01Z
- Modified
- 2025-09-03T06:31:47.193526Z
- Summary
- binutils security update
- Details
-
Binutils is a collection of binary utilities, including ar (for creating, modifying and extracting from archives), as (a family of GNU assemblers), gprof (for displaying call graph profile data), ld (the GNU linker), nm (for listing symbols from object files), objcopy (for copying and translating object files), objdump (for displaying information from object files), ranlib (for generating an index for the contents of an archive), readelf (for displaying detailed information about binary files), size (for listing the section sizes of an object or archive file), strings (for listing printable strings from files), strip (for discarding symbols), and addr2line (for converting addresses to file and line).
Security Fix(es):
A vulnerability classified as problematic was found in GNU Binutils 2.45. Affected by this vulnerability is the function copy_section of the file binutils/objcopy.c. The manipulation leads to heap-based buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. The patch is named 08c3cbe5926e4d355b5cb70bbec2b1eeb40c2944. It is recommended to apply a patch to fix this issue.(CVE-2025-7545)
- Database specific
{ "severity": "Medium" }- References
Affected packages
openEuler:24.03-LTS-SP2 / binutils
Package
- Name
- binutils
- Purl
- pkg:rpm/openEuler/binutils&distro=openEuler-24.03-LTS-SP2
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.41-17.oe2403sp2
Ecosystem specific
{
"src": [
"binutils-2.41-17.oe2403sp2.src.rpm"
],
"x86_64": [
"binutils-2.41-17.oe2403sp2.x86_64.rpm",
"binutils-debuginfo-2.41-17.oe2403sp2.x86_64.rpm",
"binutils-debugsource-2.41-17.oe2403sp2.x86_64.rpm",
"binutils-devel-2.41-17.oe2403sp2.x86_64.rpm",
"binutils-help-2.41-17.oe2403sp2.x86_64.rpm"
],
"aarch64": [
"binutils-2.41-17.oe2403sp2.aarch64.rpm",
"binutils-debuginfo-2.41-17.oe2403sp2.aarch64.rpm",
"binutils-debugsource-2.41-17.oe2403sp2.aarch64.rpm",
"binutils-devel-2.41-17.oe2403sp2.aarch64.rpm",
"binutils-help-2.41-17.oe2403sp2.aarch64.rpm"
]
}