811 matches found
Design/Logic Flaw
In elfutils 0.183, an infinite loop was found in the function handlesymtab in readelf.c .Which allows attackers to cause a denial of service infinite loop via crafted file...
UBUNTU-CVE-2021-33294
In elfutils 0.183, an infinite loop was found in the function handlesymtab in readelf.c .Which allows attackers to cause a denial of service infinite loop via crafted file...
CVE-2021-33294
In elfutils 0.183, an infinite loop was found in the function handlesymtab in readelf.c .Which allows attackers to cause a denial of service infinite loop via crafted file...
CVE-2021-33294
In elfutils 0.183, an infinite loop was found in the function handlesymtab in readelf.c .Which allows attackers to cause a denial of service infinite loop via crafted file...
elfutils 安全漏洞
Cuviper Elfutils is a collection of utilities and libraries for reading, creating, and modifying ELF binaries from the individual developers at Cuviper. A security vulnerability exists in elfutils version 0.183, which stems from an infinite loop problem in the function handlesymtab that can be...
CVE-2021-33294
The CVE-2021-33294 issue affects elfutils 0.183, with an infinite loop in handle_symtab (readelf.c) that allows a crafted file to trigger a denial of service. The Broadcom/IBM listings corroborate the infinite-loop DoS description. No public details on a fixed version are provided in the connecte...
CVE-2021-33294
In elfutils 0.183, an infinite loop was found in the function handlesymtab in readelf.c .Which allows attackers to cause a denial of service infinite loop via crafted file...
K21426934: Multiple elfutils vulnerabilities
Security Advisory Description CVE-2018-16062 dwarfgetaranges in dwarfgetaranges.c in libdw in elfutils before 2018-08-18 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted file. CVE-2018-16402 libelf/elfend.c in elfutils 0.173 allows remote attackers to...
SUSE CVE-2014-9447
Directory traversal vulnerability in the readlongnames function in libelf/elfbegin.c in elfutils 0.152 and 0.161 allows remote attackers to write to arbitrary files to the root directory via a / slash in a crafted archive, as demonstrated using the ar program...
SUSE CVE-2016-10255
The libelfsetrawdatawrlock function in elfgetdata.c in elfutils before 0.168 allows remote attackers to cause a denial of service crash via a crafted 1 shoff or 2 shsize ELF header value, which triggers a memory allocation failure...
SUSE CVE-2016-10254
The allocateelf function in common.h in elfutils before 0.168 allows remote attackers to cause a denial of service crash via a crafted ELF file, which triggers a memory allocation failure...
SUSE CVE-2017-7609
elfcompress.c in elfutils 0.168 does not validate the zlib compression factor, which allows remote attackers to cause a denial of service memory consumption via a crafted ELF file...
SUSE CVE-2017-7607
The handlegnuhash function in readelf.c in elfutils 0.168 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted ELF file...
SUSE CVE-2017-7608
The eblobjectnotetypename function in eblobjnotetypename.c in elfutils 0.168 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted ELF file...
SUSE CVE-2017-7612
The checksysvhash function in elflint.c in elfutils 0.168 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted ELF file...
SUSE CVE-2017-7610
The checkgroup function in elflint.c in elfutils 0.168 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted ELF file...
SUSE CVE-2017-7611
The checksymtabshndx function in elflint.c in elfutils 0.168 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted ELF file...
SUSE CVE-2017-7613
elflint.c in elfutils 0.168 does not validate the number of sections and the number of segments, which allows remote attackers to cause a denial of service memory consumption via a crafted ELF file...
SUSE CVE-2018-8769
elfutils 0.170 has a buffer over-read in the ebldynamictagname function of libebl/ebldynamictagname.c because SYMTABSHNDX is unsupported...
SUSE CVE-2018-16402
libelf/elfend.c in elfutils 0.173 allows remote attackers to cause a denial of service double free and application crash or possibly have unspecified other impact because it tries to decompress twice...