CVE-2025-69650

Published: 3/6/2026 Last updated: 3/12/2026 Reserved: 1/9/2026

GNU Binutils thru 2.46 readelf contains a double free vulnerability when processing a crafted ELF binary with malformed relocation data. During GOT relocation handling, dump_relocations may return early without initializing the all_relocations array. As a result, process_got_section_contents() may pass an uninitialized r_symbol pointer to free(), leading to a double free and terminating the program with SIGABRT. No evidence of exploitable memory corruption or code execution was observed; the impact is limited to denial of service.

CNA assigner: mitre (8254265b-2729-46b6-b9e3-3dfca2d5bfca) Requested by: n/a

Metrics

Version	Score	Severity	Vector String
3.1	7.5	High	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Opam packages affected (3)

bap-std clangml conf-binutils

Products affected (2)

Product	Vendor	Version
n/a	n/a	< 6.0.6003.23220
n/a	n/a	< 15.7

References (6)

https://sourceware.org/bugzilla/show_bug.cgi?id=33698
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git%3Bh=ea4bc025abdba85a90e26e13f551c16a44bfa921
https://sourceware.org/bugzilla/show_bug.cgi?id=33698
https://sourceware.org/bugzilla/show_bug.cgi?id=33698
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git%3Bh=ea4bc025abdba85a90e26e13f551c16a44bfa921
https://sourceware.org/bugzilla/show_bug.cgi?id=33698