14 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-7613
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - elflint.c in elfutils 0.168 does not validate the number of sections and the number of segments, which allows remote attackers to cause a denial of service memo...
SUSE: Security Advisory (SUSE-SU-2022:2614-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED15: dwarves / elfutils / elfutils-lang / libasm-devel / libasm1 / etc (SUSE-SU-2022:2614-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:2614-1 advisory. elfutils was updated to version 0.177 jscSLE-24501: - elfclassify: New tool to analyze ELF...
Mageia: Security Advisory (MGASA-2018-0027)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2019:1733-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for elfutils (EulerOS-SA-2019-2510)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED12 / SLES12 Security Update : elfutils (SUSE-SU-2019:1733-1)
This update for elfutils fixes the following issues : Security issues fixed : CVE-2018-16403: Fixed a heap-based buffer over-read that could have led to Denial of Service bsc1107067. CVE-2016-10254: Fixed a memory allocation failure in alloxateelf bsc1030472. CVE-2019-7665: NTPLATFORM core file...
openSUSE: Security Advisory for elfutils (openSUSE-SU-2019:1590-1)
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Updated elfutils packages fix security vulnerabilities
The elfutils package has been updated to version 0.169 to fix several bugs that can lead to memory allocation failures or heap overflows CVE-2016-10254, CVE-2016-10255, CVE-2017-7607, CVE-2017-7608, CVE-2017-7609, CVE-2017-7610, CVE-2017-7611, CVE-2017-7612, CVE-2017-7613...
GLSA-201710-10 : elfutils: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201710-10 elfutils: Multiple vulnerabilities Multiple vulnerabilities have been discovered in elfutils. Please review the referenced CVE identifiers for details. Impact : A remote attacker could possibly cause a Denial of Service...
Fedora 26 : elfutils (2017-a6f5c8fbf3)
New upstream release. Various bug fixes. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
Fedora 25 : elfutils (2017-5e4fb05a0a)
New upstream release. Various bug fixes. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
CVE-2017-7613
CVE-2017-7613 affects Elfutils 0.168. The vulnerability arises from memory allocation failure in elflint.c when opening a crafted ELF file, leading to denial of service via memory exhaustion. Affected product: Elfutils (version 0.168). Root cause: insufficient validation of number of sections/seg...
CVE-2017-7613
elflint.c in elfutils 0.168 does not validate the number of sections and the number of segments, which allows remote attackers to cause a denial of service memory consumption via a crafted ELF file...