GNU Binutils thru 2.46 readelf contains a null pointer dereference vulnerability when processing a crafted ELF binary with malformed header fields. During relocation processing, an invalid or null section pointer may be passed into display_relocations(), resulting in a segmentation fault (SIGSEGV) and abrupt termination. No evidence of memory corruption beyond the null pointer dereference, nor any possibility of code execution, was observed.
CVE-2025-69649
NONE
EPSS 0.04%
Updated Mar 06, 2026
GNU
CVE Details
CVE ID
CVE-2025-69649
Published Date
Mar 06, 2026
Vendor
GNU
Severity
NONE
Exploit Prediction (EPSS)
Probability of Exploit
0.04%
Likelihood of exploitation in next 30 days
Percentile:
13.7th percentile (higher than 13.7% of all CVEs)
Standard patching cycle
Impact
Minimal impact
Source
View Advisory