CVE-2026-3442

MEDIUM

Red Hat Enterprise Linux 10 - Buffer Overflow

Title source: rule

Exploitation Summary

EIP tracks 1 public exploit for CVE-2026-3442. PoCs published by XiaomingX.

AI-analyzed exploit summary This repository contains a functional PoC exploit for CVE-2026-3442, which targets an out-of-bounds read vulnerability in GNU Binutils' BFD library when processing maliciously crafted ELF files with corrupted relocation sections. The exploit generates a malicious ELF file designed to trigger the vulnerability in affected versions of Binutils.

Description

A flaw was found in GNU Binutils. This vulnerability, a heap-based buffer overflow, specifically an out-of-bounds read, exists in the bfd linker component. An attacker could exploit this by convincing a user to process a specially crafted malicious XCOFF object file. Successful exploitation may lead to the disclosure of sensitive information or cause the application to crash, resulting in an application level denial of service.

Exploits (1)

github WORKING POC 10 stars

by XiaomingX · pythonpoc

https://github.com/XiaomingX/data-cve-poc-py-v1/tree/main/2026/CVE-2026-3442

View Code ZIP pw:eip

This repository contains a functional PoC exploit for CVE-2026-3442, which targets an out-of-bounds read vulnerability in GNU Binutils' BFD library when processing maliciously crafted ELF files with corrupted relocation sections. The exploit generates a malicious ELF file designed to trigger the vulnerability in affected versions of Binutils.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: GNU Binutils <= 2.42

No auth needed

Prerequisites: GNU Binutils <= 2.42 installed on the target system · ability to deliver the malicious ELF file to the target

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Mar 16, 2026 Full analysis →

References (2)

Core 2

Core References

Vendor Advisory vdb-entry x_refsource_redhat

https://access.redhat.com/security/cve/CVE-2026-3442

Vendor Advisory issue-tracking x_refsource_redhat

https://bugzilla.redhat.com/show_bug.cgi?id=2443828

Scores

CVSS v3 6.1

EPSS 0.0023

EPSS Percentile 13.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-125

Status published

Products (15)

gnu/binutils

Red Hat/Red Hat Enterprise Linux 10

Red Hat/Red Hat Enterprise Linux 6

Red Hat/Red Hat Enterprise Linux 7

Red Hat/Red Hat Enterprise Linux 8

Red Hat/Red Hat Enterprise Linux 9

Red Hat/Red Hat Hardened Images

Red Hat/Red Hat Hardened Images 1

Red Hat/Red Hat OpenShift Container Platform 4

redhat/enterprise_linux 6.0

... and 5 more

Published Mar 16, 2026

Tracked Since Mar 16, 2026