Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-8225

A vulnerability was found in GNU Binutils 2.44 and classified as problematic. This issue affects the function process_debug_info of the file binutils/dwarf.c of the component DWARF Section Handler. The manipulation leads to memory leak. Attacking locally is a requirement. The identifier of the patch is e51fdff7d2e538c0e5accdd65649ac68e6e0ddd4. It is recommended to apply a patch to fix this issue.

Published

2025-07-27T08:15:25.760

Last Modified

2025-08-01T17:08:13.977

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 3.3 (LOW)

CVSSv2 Vector

AV:L/AC:L/Au:S/C:N/I:N/A:P

Access Vector: LOCAL
Access Complexity: LOW
Authentication: SINGLE
Confidentiality Impact: NONE
Integrity Impact: NONE
Availability Impact: PARTIAL

Exploitability Score

3.1

Impact Score

2.9

Weaknesses

Type: Primary
CWE-401
CWE-404
Type: Primary
CWE-401

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	gnu	binutils	2.44	Yes

References

https://gitlab.com/gnutools/binutils-gdb/-/commit/e51fdff7d2e538c0e5accdd65649ac68e6e0ddd4 Patch ([email protected])
https://vuldb.com/?ctiid.317813 Permissions Required, VDB Entry ([email protected])
https://vuldb.com/?id.317813 Third Party Advisory, VDB Entry ([email protected])
https://vuldb.com/?submit.621883 Exploit, Third Party Advisory, VDB Entry ([email protected])
https://www.gnu.org/ Product ([email protected])