CVE-2026-3441: Out-of-bounds Read in Red Hat Red Hat Enterprise Linux 10
A flaw was found in GNU Binutils. This heap-based buffer overflow vulnerability, specifically an out-of-bounds read in the bfd linker, allows an attacker to gain access to sensitive information. By convincing a user to process a specially crafted XCOFF object file, an attacker can trigger this flaw, potentially leading to information disclosure or an application level denial of service.
AI Analysis
Technical Summary
This vulnerability in GNU Binutils, specifically in the bfd linker, allows an out-of-bounds read on the heap when processing XCOFF object files. This flaw can be triggered by a user processing a maliciously crafted file, potentially exposing sensitive information or causing application denial of service. The CVSS 3.1 score is 6.1, reflecting a medium severity with local attack vector, low attack complexity, no privileges required, user interaction needed, and high confidentiality impact but no integrity or availability impact beyond application-level denial of service.
Potential Impact
Successful exploitation can lead to disclosure of sensitive information from the affected system or cause an application-level denial of service. The vulnerability requires local access and user interaction, limiting remote exploitation. There are no reports of active exploitation in the wild.
Mitigation Recommendations
Patch status is not yet confirmed — check the Red Hat advisory at https://access.redhat.com/security/cve/CVE-2026-3441 for current remediation guidance. Until a patch is applied, users should avoid processing untrusted XCOFF object files to mitigate risk.
CVE-2026-3441: Out-of-bounds Read in Red Hat Red Hat Enterprise Linux 10
Description
A flaw was found in GNU Binutils. This heap-based buffer overflow vulnerability, specifically an out-of-bounds read in the bfd linker, allows an attacker to gain access to sensitive information. By convincing a user to process a specially crafted XCOFF object file, an attacker can trigger this flaw, potentially leading to information disclosure or an application level denial of service.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability in GNU Binutils, specifically in the bfd linker, allows an out-of-bounds read on the heap when processing XCOFF object files. This flaw can be triggered by a user processing a maliciously crafted file, potentially exposing sensitive information or causing application denial of service. The CVSS 3.1 score is 6.1, reflecting a medium severity with local attack vector, low attack complexity, no privileges required, user interaction needed, and high confidentiality impact but no integrity or availability impact beyond application-level denial of service.
Potential Impact
Successful exploitation can lead to disclosure of sensitive information from the affected system or cause an application-level denial of service. The vulnerability requires local access and user interaction, limiting remote exploitation. There are no reports of active exploitation in the wild.
Mitigation Recommendations
Patch status is not yet confirmed — check the Red Hat advisory at https://access.redhat.com/security/cve/CVE-2026-3441 for current remediation guidance. Until a patch is applied, users should avoid processing untrusted XCOFF object files to mitigate risk.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- redhat
- Date Reserved
- 2026-03-02T14:08:59.315Z
- Cvss Version
- 3.1
- State
- PUBLISHED
Threat ID: 69b604929b0f87e88177d6e3
Added to database: 3/15/2026, 1:00:02 AM
Last enriched: 4/14/2026, 3:50:42 PM
Last updated: 4/28/2026, 9:28:03 AM
Views: 68
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.