SUSE: Security Advisory (SUSE-SU-2015:0292-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2019:1733-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

The vulnerability of the dwarf_getaranges function in the dwarf_getaranges.c file of the ELF object processing utility Elfutils, related to reading beyond the allowable buffer data size, allows a attacker to cause a service failure.

The vulnerability in the dwarfgetaranges.c function of the ELF object processing utility Elfutils relates to reading data beyond the permissible buffer size. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

The vulnerability of the arlib_add_symbols() function in the arlib.c file of the ELF object processing utility suite Elfutils, related to division by zero, allows a malicious actor to cause a service failure.

The vulnerability of the arlibaddsymbols function in the arlib.c file of the ELF object processing utility Elfutils is related to incorrect handling of zero shentsize. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

PT-2021-7965 · Elfutils +4 · Elfutils +4

Name of the Vulnerable Software and Affected Versions: Elfutils versions 0.183 Description: The issue is related to the handle symtab function in the readelf.c component of the Elfutils utility for modifying and analyzing ELF binary files. It involves an infinite loop with an unreachable exit...

CentOS 8 : elfutils (CESA-2019:3575)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2019:3575 advisory. - elfutils: buffer over-read in the eblobjectnote function in eblobjnote.c in libebl CVE-2019-7146 - elfutils: heap-based buffer over-read in...

new packages: gcc-toolset-10-elfutils

GCC Toolset is a compiler toolset that provides recent versions of development tools. GCC Toolset is an Application Stream packaged as a Software Collection. This enhancement update adds the gcc-toolset-10-elfutils packages to AlmaLinux Eneterprise Linux 8. For instructions on usage, see Using GC...

elfutils bug fix and enhancement update

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...

ALEA-2020:4571 elfutils bug fix and enhancement update

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...

Denial Of Service (DoS)

elfutils is vulnerable to denial of service DoS. The vulnerability exists as the eblobjectnotetypename function in eblobjnotetypename.c allows remote attackers to cause a denial of service with a crafted ELF file...

Denial Of Service (DoS)

elfutils is vulnerable to denial of service. The allocateelf function in common.h allows remote attackers to crash the application via a malicious ELF file, which would trigger a memory allocation failure...

Denial Of Service (DoS)

elfutils is vulnerable to denial of service DoS. The vulnerability exists as a heap-based buffer over-read could occur through the handlegnuhash function in readelf.c with an ELF file...

Denial Of Service (DoS)

elfutils is vulnerable to denial of service DoS. The vulnerability exists as it was possible to trigger a memory allocation failure through the shoff or shsize ELF header value, throough the libelfsetrawdatawrlock function in elfgetdata.c...

Denial Of Service (DoS)

elfutils is vulnerable to denial of service. A heap-based buffer over-read in the checkgroup function in elflint.c allow a remote attacker to cause crash the application using a malicious ELF file...

Denial Of Service (DoS)

elfutils is vulnerable to denial of service DoS. The vulnerability exists as elflint.c does not validate the number of sections and the number of segments, allowing remote attackers to cause a denial of service through a crafted ELF file...

Buffer Overflow

elfutils is vulnerable to buffer overflow. The checksymtabshndx function in elflint.c in elfutils allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted ELF file...

EulerOS 2.0 SP2 : elfutils (EulerOS-SA-2020-1634)

According to the version of the elfutils packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - libdw in elfutils 0.173 checks the end of the attributes list incorrectly in dwarfgetabbrev in dwarfgetabbrev.c and dwarfhasattr in dwarfhasattr....

Huawei EulerOS: Security Advisory for elfutils (EulerOS-SA-2020-1634)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS Virtualization for ARM 64 3.0.2.0 : httpd (EulerOS-SA-2020-1552)

According to the versions of the httpd packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - In Apache HTTP server 2.4.0 to 2.4.39, Redirects configured with modrewrite that were intended to be self-referential...

EulerOS Virtualization 3.0.2.2 : elfutils (EulerOS-SA-2020-1448)

According to the versions of the elfutils packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In elfutils 0.175, a heap-based buffer over-read was discovered in the function elf32xlatetom in elf32xlatetom.c in libelf. A...