DEBIAN-CVE-2025-8225

See a problem?
Please try reporting it to the source first.

Source

https://security-tracker.debian.org/tracker/CVE-2025-8225

Import Source

https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2025-8225.json

JSON Data

https://api.test.osv.dev/v1/vulns/DEBIAN-CVE-2025-8225

Upstream

CVE-2025-8225

Published

2025-07-27T08:15:25Z

Modified

2025-09-19T07:34:46.549397Z

Summary

[none]

Details

A vulnerability was found in GNU Binutils 2.44 and classified as problematic. This issue affects the function processdebuginfo of the file binutils/dwarf.c of the component DWARF Section Handler. The manipulation leads to memory leak. Attacking locally is a requirement. The identifier of the patch is e51fdff7d2e538c0e5accdd65649ac68e6e0ddd4. It is recommended to apply a patch to fix this issue.

References

https://security-tracker.debian.org/tracker/CVE-2025-8225

Affected packages

Debian:14 / binutils

Package

Name: binutils
Purl: pkg:deb/debian/binutils?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.45-3

Affected versions

2.*

2.44-3

2.44.50.20250201-1

2.44.50.20250207-1

2.44.50.20250218-1

2.44.50.20250218-2

2.44.50.20250309-1

2.44.50.20250405-1

2.44.50.20250502-1

2.44.50.20250520-1

2.44.50.20250528-1

2.44.50.20250707-1

2.44.90.20250719-1

2.45-1

2.45-2

Ecosystem specific

{
    "urgency": "unimportant"
}