216.73.216.133

CVE-2025-69648

· Published 09/03/2026 15:15 · Modified 10/03/2026 18:18

Labels: CVE-2025-69648 2026-03-09CVE-2025-69648CWE-835[email protected]

Essential information

Published
09/03/2026 15:15
Modified
10/03/2026 18:18
Author
Creator
CVSS
6.2 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS metrics

Description

GNU Binutils thru 2.45.1 readelf contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF .debug_rnglists data. A logic flaw in the DWARF parsing path causes readelf to repeatedly print the same warning message without making forward progress, resulting in a non-terminating output loop that requires manual interruption. No evidence of memory corruption or code execution was observed.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
gnu / binutils cpe:2.3:a:gnu:binutils:*:*:*:*:*:*:*:*

References