CVE-2025-69644 — MEDIUM (5.0)

Q: How severe is CVE-2025-69644?

CVE-2025-69644 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2025-69644?

Check the references section above for vendor advisories and patch information. Affected products include: Gnu Binutils.

Vulnerability Description

An issue was discovered in Binutils before 2.46. The objdump contains a denial-of-service vulnerability when processing a crafted binary with malformed debug information. A logic flaw in the handling of DWARF location list headers can cause objdump to enter an unbounded loop and produce endless output until manually interrupted. This issue affects versions prior to the upstream fix and allows a local attacker to cause excessive resource consumption by supplying a malicious input file.

CVSS Score

5.0

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Gnu	Binutils	< 2.46

Related Weaknesses (CWE)

CWE-400

References

FAQ

What is CVE-2025-69644?

CVE-2025-69644 is a vulnerability with a CVSS score of 5.0 (MEDIUM). An issue was discovered in Binutils before 2.46. The objdump contains a denial-of-service vulnerability when processing a crafted binary with malformed debug information. A logic flaw in the handling ...

How severe is CVE-2025-69644?

CVE-2025-69644 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-69644?

Check the references section above for vendor advisories and patch information. Affected products include: Gnu Binutils.