CVE-2016-10255

2017-03-23T16:59:00
ID CVE-2016-10255
Type cve
Reporter cve@mitre.org
Modified 2018-06-07T01:29:00

Description

The __libelf_set_rawdata_wrlock function in elf_getdata.c in elfutils before 0.168 allows remote attackers to cause a denial of service (crash) via a crafted (1) sh_off or (2) sh_size ELF header value, which triggers a memory allocation failure.