RHEL 5 : elfutils (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - elfutils: directory traversal in readlongnames CVE-2014-9447 - elfutils: eu-size cannot handle recursive ...

Mageia: Security Advisory (MGASA-2015-0033)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2015:0434-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for elfutils FEDORA-2015-11380

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SuSE 11.3 Security Update : elfutils (SAT Patch Number 10328)

elfutils has been updated to fix one security issue : - Directory traversal vulnerability in the readlongnames function in libelf/elfbegin.c in elfutils 0.152 and 0.161 allowed remote attackers to write to arbitrary files to the root directory via a / slash in a crafted archive, as demonstrated...

SUSE-SU-2015:0434-1 Security update for elfutils

elfutils has been updated to fix one security issue: CVE-2014-9447: Directory traversal vulnerability in the readlongnames function in libelf/elfbegin.c in elfutils 0.152 and 0.161 allowed remote attackers to write to arbitrary files to the root directory via a / slash in a crafted archive, as...

SUSE-SU-2015:0292-1 Security update for elfutils

elfutils was updated to fix one security issue. This security issue was fixed: - Directory traversal vulnerability in the readlongnames function CVE-2014-9447...

openSUSE Security Update : elfutils (openSUSE-SU-2015:0123-1)

elfutils was updated to fix a directory traversal vulnerability bnc911662 CVE-2014-9447 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2015-59. The text description of this plugin is...

[USN-2482-1] elfutils vulnerability

========================================================================== Ubuntu Security Notice USN-2482-1 January 23, 2015 elfutils vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

Fedora 20 : elfutils-0.161-2.fc20 (2015-0677)

Update to elfutils 0.161. Security fix for CVE-2014-9447. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...

Updated elfutils packages fix CVE-2014-9447

Updated elfutils packages fix security vulnerability: Directory traversal vulnerability in the readlongnames function in libelf/elfbegin.c in elfutils allows remote attackers to write to arbitrary files to the root directory via a / slash in a crafted archive, as demonstrated using the ar program...

Fedora Update for elfutils FEDORA-2015-0692

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2014-9486

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-9447. Reason: This candidate is a duplicate of CVE-2014-9447. Notes: All CVE users should reference CVE-2014-9447 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

Design/Logic Flaw

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-9447. Reason: This candidate is a duplicate of CVE-2014-9447. Notes: All CVE users should reference CVE-2014-9447 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

DEBIAN-CVE-2014-9447

Directory traversal vulnerability in the readlongnames function in libelf/elfbegin.c in elfutils 0.152 and 0.161 allows remote attackers to write to arbitrary files to the root directory via a / slash in a crafted archive, as demonstrated using the ar program...

CVE-2014-9447

Directory traversal vulnerability in the readlongnames function in libelf/elfbegin.c in elfutils 0.152 and 0.161 allows remote attackers to write to arbitrary files to the root directory via a / slash in a crafted archive, as demonstrated using the ar program...

CVE-2014-9447

ELF utilities (elfutils) vulnerable in versions 0.152 and 0.161 due to a directory traversal in libelf/elf_begin.cread_long_names that lets remote attackers write to arbitrary files in the root directory via a crafted archive (ar). Impact is ability to modify files on the root; remediation is upd...

CVE-2014-9447

Directory traversal vulnerability in the readlongnames function in libelf/elfbegin.c in elfutils 0.152 and 0.161 allows remote attackers to write to arbitrary files to the root directory via a / slash in a crafted archive, as demonstrated using the ar program...