CVE-2025-11494: GNU Binutils Linker elfxx-x86.c _bfd_x86_elf_late_size_sections out-of-bounds
Overview
- Severity
- Low (CVSS 3.3)
- CVSS Vector
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C
- Exploit Status
- Not Exploited
- Patch Tuesday
- 2025-Oct
- Released
- 2025-11-29
- Last Updated
- 2025-12-03
- EPSS Score
- 0.03% (percentile: 10.0%)
Affected Products (5)
Open Source Software
- cbl2 binutils 2.37-19 on CBL Mariner 2.0
- azl3 binutils 2.41-10 on Azure Linux 3.0
- cbl2 gdb 11.2-10 on CBL Mariner 2.0
Other
Revision History
- 2025-11-29: Information published.
- 2025-12-01: Information published.
- 2025-12-03: Information published.