CVE-2025-69645

ADVISORY - nist

Summary

Binutils objdump contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF debug information. A logic error in the handling of DWARF compilation units can result in an invalid offset_size value being used inside byte_get_little_endian, leading to an abort (SIGABRT). The issue was observed in binutils 2.44. A local attacker can trigger the crash by supplying a malicious input file.

EPSS Score⁠: 0.00004 (0.002)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-400⁠

Uncontrolled Resource Consumption

ADVISORY - redhat

CWE-1285⁠

Improper Validation of Specified Index, Position, or Offset in Input

Impacted images

Advisories

NIST

CREATED

22 days ago

UPDATED

8 days ago

ADVISORY IDCVE-2025-69645⁠

EXPLOITABILITY SCORE

1.8

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-400⁠

CVSS SCORE

5.5medium

Alpine

CREATED

8 days ago

UPDATED

8 days ago

ADVISORY IDCVE-2025-69645⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Debian

CREATED

21 days ago

UPDATED

5 days ago

ADVISORY IDCVE-2025-69645⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Alow

Ubuntu

CREATED

19 days ago

UPDATED

19 days ago

ADVISORY IDCVE-2025-69645⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

Red Hat

CREATED

22 days ago

UPDATED

21 days ago

ADVISORY IDCVE-2025-69645⁠

EXPLOITABILITY SCORE

1.3

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-1285⁠

CVSS SCORE

2.8low

minimos

CREATED

6 days ago

UPDATED

6 days ago

ADVISORY ID

MINI-746c-3x7x-77gx

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY