Discovery API Icon
Discovery API
Security Advisory Icon
Security Advisory
Package Manager Icon
Package Manager
Alpaquita LinuxStreamSecurity Advisory
Search Cve

CVE-2025-66861

Published: December 31, 2025Last modified: January 8, 2026

Description

An issue was discovered in function d_unqualified_name in file cp-demangle.c in BinUtils 2.26 allowing attackers to cause a denial of service via crafted PE file.

Severity score breakdown

ParameterValue
Base score2.5
Attack VectorLOCAL
Attack complexityHIGH
Privileges requiredNONE
User interactionREQUIRED
ScopeUNCHANGED
ConfidentialityNONE
Integrity impactNONE
Availability impactLOW
VectorCVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L

Status

ProductReleasePackageStatus
Alpaquita Linux23 LTSbinutilsNot affected (2.39-r2)
25 LTSbinutilsNot affected (2.44-r0)
StreambinutilsNot affected (2.40-r4)
Hardened Containers23 LTSbinutilsNot affected (2.39-r2)
25 LTSbinutilsNot affected (2.44-r0)
StreambinutilsNot affected (2.40-r4)

References

ON THIS PAGE