{"id":"CLSA-2026-1779093100","summary":"binutils: Fix of 6 CVEs","details":"- CVE-2022-38533: fix heap buffer overflow in bfd_getl32 from strip_main with crafted COFF file\n- CVE-2022-47007: fix memory leak in stab_demangle_v3_arg in stabs.c\n- CVE-2022-47008: fix memory leak in make_tempdir and make_tempname in bucomm.c\n- CVE-2022-47010: fix memory leak in pr_function_type in prdbg.c\n- CVE-2022-48064: fix excessive memory consumption in bfd_dwarf2_find_nearest_line_with_alt\n- CVE-2023-1972: fix heap buffer overflow in _bfd_elf_slurp_version_tables","modified":"2026-05-27T11:17:31.615257953Z","published":"2026-05-18T08:31:45Z","upstream":["CVE-2022-38533","CVE-2022-47007","CVE-2022-47008","CVE-2022-47010","CVE-2022-48064","CVE-2023-1972"],"references":[{"type":"ADVISORY","url":"https://errata.tuxcare.com/els_os/almalinux9.2esu/CLSA-2026-1779093100.html"}],"affected":[{"package":{"name":"binutils","ecosystem":"TuxCare:AlmaLinux:9.2","purl":"pkg:rpm/tuxcare/binutils?distro=almalinux-9.2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.35.2-37.el9.tuxcare.els11"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2026-1779093100.json"}},{"package":{"name":"binutils-devel","ecosystem":"TuxCare:AlmaLinux:9.2","purl":"pkg:rpm/tuxcare/binutils-devel?distro=almalinux-9.2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.35.2-37.el9.tuxcare.els11"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2026-1779093100.json"}},{"package":{"name":"binutils-gold","ecosystem":"TuxCare:AlmaLinux:9.2","purl":"pkg:rpm/tuxcare/binutils-gold?distro=almalinux-9.2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.35.2-37.el9.tuxcare.els11"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2026-1779093100.json"}},{"package":{"name":"cross-binutils-aarch64","ecosystem":"TuxCare:AlmaLinux:9.2","purl":"pkg:rpm/tuxcare/cross-binutils-aarch64?distro=almalinux-9.2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.35.2-37.el9.tuxcare.els11"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2026-1779093100.json"}},{"package":{"name":"cross-binutils-ppc64le","ecosystem":"TuxCare:AlmaLinux:9.2","purl":"pkg:rpm/tuxcare/cross-binutils-ppc64le?distro=almalinux-9.2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.35.2-37.el9.tuxcare.els11"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2026-1779093100.json"}},{"package":{"name":"cross-binutils-s390x","ecosystem":"TuxCare:AlmaLinux:9.2","purl":"pkg:rpm/tuxcare/cross-binutils-s390x?distro=almalinux-9.2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.35.2-37.el9.tuxcare.els11"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2026-1779093100.json"}}],"schema_version":"1.7.5"}