{"id":"MGASA-2025-0084","summary":"Updated binutils packages fix security vulnerabilities","details":"nm \u003e=2.43 is affected by: Incorrect Access Control. The type of\nexploitation is: local. The component is: `nm --without-symbol-version`\nfunction. (CVE-2024-57360)\nGNU Binutils objdump.c disassemble_bytes stack-based overflow.\n(CVE-2025-0840)\n","modified":"2026-04-16T00:10:41.956721684Z","published":"2025-03-02T07:18:39Z","upstream":["CVE-2024-57360","CVE-2025-0840"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2025-0084.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=34053"},{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-7306-1"}],"affected":[{"package":{"name":"binutils","ecosystem":"Mageia:9","purl":"pkg:rpm/mageia/binutils?arch=source&distro=mageia-9"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.40-11.1.mga9"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2025-0084.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}