PatchSiren

PatchSiren cyber security CVE debrief

CVE-2026-3441 Red Hat CVE debrief

CVE-2026-3441 is a heap-based buffer overflow vulnerability in GNU Binutils, specifically an out-of-bounds read in the bfd linker. This vulnerability allows an attacker to gain access to sensitive information. By convincing a user to process a specially crafted XCOFF object file, an attacker can trigger this flaw, potentially leading to information disclosure or an application level denial of service. The vulnerability has a CVSS score of 6.1 and is classified as MEDIUM severity. It was published on March 16, 2026, and modified on June 30, 2026.

Vendor
Red Hat
Product
Red Hat Hardened Images
CVSS
MEDIUM 6.1
CISA KEV
Not listed in stored evidence
Original CVE published
2026-03-16
Original CVE updated
2026-06-30
Advisory published
2026-03-16
Advisory updated
2026-06-30

Who should care

This vulnerability affects users of Red Hat OpenShift Container Platform, Red Hat Enterprise Linux, and other products that utilize GNU Binutils. Specifically, the vulnerability impacts versions of OpenShift Container Platform 4.0, and Enterprise Linux 6.0, 7.0, 8.0, 9.0, and 10.0. Users of these products should take immediate action to mitigate the vulnerability.

Technical summary

The vulnerability is caused by a heap-based buffer overflow in the bfd linker of GNU Binutils. This occurs when processing a specially crafted XCOFF object file, which can lead to an out-of-bounds read. The vulnerability can result in information disclosure or an application-level denial of service. The Common Vulnerability Scoring System (CVSS) score for this vulnerability is 6.1, indicating a moderate level of severity. The CVSS vector for this vulnerability is CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L.

Defensive priority

This vulnerability should be prioritized for remediation due to its moderate severity and potential impact on affected systems. Users of impacted products should apply patches or mitigations as soon as possible to prevent exploitation.

Recommended defensive actions

  • Apply patches or updates provided by the vendor to address the vulnerability.
  • Restrict access to sensitive files and data to prevent unauthorized access.
  • Implement additional monitoring and logging to detect potential exploitation attempts.
  • Consider implementing compensating controls, such as Web Application Firewalls (WAFs), to detect and prevent attacks.
  • Perform thorough inventory checks to identify and address any vulnerable systems or components.

Evidence notes

The vulnerability was reported by an unknown source and is tracked by CVE-2026-3441. The National Vulnerability Database (NVD) provides detailed information about the vulnerability, including its CVSS score and vector. Red Hat provides advisories and patches for affected products, including OpenShift Container Platform and Enterprise Linux.

Official resources

This article is AI-assisted and based on the supplied source corpus.