Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
5.5
Binutils objdump crashes on malformed debug information
CVE-2025-69645
Summary
A flaw in Binutils objdump can cause it to crash when processing a specially crafted binary. This can be exploited by an attacker to disrupt the system by crashing the objdump tool. To fix this, update to a version of Binutils that has patched this issue.
Original title
Binutils objdump contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF debug information. A logic error in the handling of DWARF compilation units can res...
Original description
Binutils objdump contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF debug information. A logic error in the handling of DWARF compilation units can result in an invalid offset_size value being used inside byte_get_little_endian, leading to an abort (SIGABRT). The issue was observed in binutils 2.44. A local attacker can trigger the crash by supplying a malicious input file.
Vulnerability type
CWE-400
Uncontrolled Resource Consumption
Published: 6 Mar 2026 · Updated: 12 Mar 2026 · First seen: 6 Mar 2026