Release date:
2026-04-09 14:45:10 UTC
Description:
- CVE-2025-5244: fix NULL pointer dereference in elf_gc_sweep for empty section groups
- CVE-2025-5245: fix memory corruption in debug_type_samep incorrect NULL check
- CVE-2026-3441: fix out-of-bounds read in xcoff_link_add_symbols x_scnlen bounds check
- CVE-2026-3442: fix out-of-bounds read in xcoff_link_add_symbols missing r_symndx bounds check
Updated packages:
-
binutils-2.20.51.0.2-5.48.1.el6.tuxcare.els11.x86_64.rpm
sha:7ec1b5bc44b65a58f60bf814fef150e0398aefe219e6889fba680dfd8f577e42
-
binutils-devel-2.20.51.0.2-5.48.1.el6.tuxcare.els11.i686.rpm
sha:e6388961e63046dd259889bc7061578dce9acad4d0f129f82ec1f027c85741e4
-
binutils-devel-2.20.51.0.2-5.48.1.el6.tuxcare.els11.x86_64.rpm
sha:7a20f1d6b26df4b75461e881fdcd21045255a826be88c46a42aeffa8e89ce1d1
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
