USN-3670-1: elfutils vulnerabilities

Agostino Sarubbo discovered that elfutils incorrectly handled certain malformed ELF files. If a user or automated system were tricked into processing a specially crafted ELF file, elfutils could be made to crash or consume resources, resulting in a denial of service...

CVE-2018-8769

An out-of-bound read flaw has been found in elfutils in the ebldynamictagname function of ebldynamictagname.c file. An attacker could exploit this by supplying a crafted ELF file to display wrong data or potentially cause a crash in eu-readelf and eu-elflint binaries...

elfutils 'ebl_dynamic_tag_name' function buffer overflow vulnerability

elfutils is a collection of utilities and libraries for reading, creating and modifying ELF binaries. A buffer overflow vulnerability exists in the 'ebldynamictagname' function of the libebl/ebldynamictagname.c file in elfutils version 0.170, which stems from the program's lack of support for...

CVE-2018-8769

elfutils 0.170 has a buffer over-read in the ebldynamictagname function of libebl/ebldynamictagname.c because SYMTABSHNDX is unsupported...

Code injection

elfutils 0.170 has a buffer over-read in the ebldynamictagname function of libebl/ebldynamictagname.c because SYMTABSHNDX is unsupported...

CVE-2018-8769

elfutils 0.170 has a buffer over-read in the ebldynamictagname function of libebl/ebldynamictagname.c because SYMTABSHNDX is unsupported...

CVE-2018-8769

elfutils 0.170 has a buffer over-read in the ebldynamictagname function of libebl/ebldynamictagname.c because SYMTABSHNDX is unsupported...

CVE-2018-8769

elfutils 0.170 has a buffer over-read in the ebldynamictagname function of libebl/ebldynamictagname.c because SYMTABSHNDX is unsupported...

CVE-2018-8769

CVE-2018-8769 affects elfutils version 0.170. The vulnerability is a buffer over-read in the function ebl_dynamic_tag_name (libebl/ebldynamictagname.c) when SYMTAB_SHNDX is unsupported. Multiple sources (NVD, CNVD, OSV, CVE lists) concur on the underlying cause and description. The issue is tied ...

CVE-2018-8769

elfutils 0.170 has a buffer over-read in the ebldynamictagname function of libebl/ebldynamictagname.c because SYMTABSHNDX is unsupported...

Critical Photon OS Security Update - PHSA-2018-0108

Updates of 'curl', 'postgresql' packages of Photon OS have been released...

Updated elfutils packages fix security vulnerabilities

The elfutils package has been updated to version 0.169 to fix several bugs that can lead to memory allocation failures or heap overflows CVE-2016-10254, CVE-2016-10255, CVE-2017-7607, CVE-2017-7608, CVE-2017-7609, CVE-2017-7610, CVE-2017-7611, CVE-2017-7612, CVE-2017-7613...

MGASA-2018-0027 Updated elfutils packages fix security vulnerabilities

The elfutils package has been updated to version 0.169 to fix several bugs that can lead to memory allocation failures or heap overflows CVE-2016-10254, CVE-2016-10255, CVE-2017-7607, CVE-2017-7608, CVE-2017-7609, CVE-2017-7610, CVE-2017-7611, CVE-2017-7612, CVE-2017-7613...

GLSA-201710-10 : elfutils: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201710-10 elfutils: Multiple vulnerabilities Multiple vulnerabilities have been discovered in elfutils. Please review the referenced CVE identifiers for details. Impact : A remote attacker could possibly cause a Denial of Service...

elfutils: Multiple vulnerabilities

Background Elfutils provides a library and utilities to access, modify and analyse ELF objects. Description Multiple vulnerabilities have been discovered in elfutils. Please review the referenced CVE identifiers for details. Impact A remote attacker could possibly cause a Denial of Service...

EulerOS 2.0 SP2 : elfutils (EulerOS-SA-2017-1143)

According to the version of the elfutils packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - The allocateelf function in common.h in elfutils before 0.168 allows remote attackers to cause a denial of service crash via a crafted ELF file,...

EulerOS 2.0 SP1 : elfutils (EulerOS-SA-2017-1142)

According to the version of the elfutils packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - The allocateelf function in common.h in elfutils before 0.168 allows remote attackers to cause a denial of service crash via a crafted ELF file,...

CVE-2016-10254

The allocateelf function in common.h in elfutils before 0.168 allows remote attackers to cause a denial of service crash via a crafted ELF file, which triggers a memory allocation failure...

Fedora 26 : elfutils (2017-a6f5c8fbf3)

New upstream release. Various bug fixes. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

Fedora 25 : elfutils (2017-5e4fb05a0a)

New upstream release. Various bug fixes. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...