CVE-2026-40527

radare2 prior to commit bc5a890 contains a command injection vulnerability in the afsv/afsvj command path where crafted ELF binaries can embed malicious r2 command sequences as DWARF DWTAGformalparameter names. Attackers can craft a binary with shell commands in DWARF parameter names that execute...

Radare2 安全漏洞

Radare2 is an open-source reverse framework for Unix geeks developed by Radare. Previous versions of Radare2, up to bc5a890, contained security vulnerabilities. These vulnerabilities stemmed from command injection in the afsv/afsvj command path. A specially crafted ELF binary could embed maliciou...

Linux Distros Unpatched Vulnerability : CVE-2025-69649

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GNU Binutils thru 2.46 readelf contains a null pointer dereference vulnerability when processing a crafted ELF binary with malformed header fields. During...

CVE-2025-69650

A flaw was found in binutils. Processing a specially crafted ELF binary file containing malformed relocation data with the readelf program can trigger a double free, causing a crash and resulting in a denial of service. Mitigation To mitigate this vulnerability, do not process untrusted, unverifi...

CVE-2025-69650

GNU Binutils thru 2.46 readelf contains a double free vulnerability when processing a crafted ELF binary with malformed relocation data. During GOT relocation handling, dumprelocations may return early without initializing the allrelocations array. As a result, processgotsectioncontents may pass ...

EUVD-2004-1071

Malware in sbrugna...

EUVD-2017-1510

Malware in sbrugna...

[SECURITY] Fedora 39 Update: rust-elfcat-0.1.8-10.fc39

ELF visualizer. Generates HTML files from ELF binaries...

[SECURITY] Fedora 40 Update: rust-elfcat-0.1.8-10.fc40

ELF visualizer. Generates HTML files from ELF binaries...

Cybersecurity Agencies Warn Ubiquiti EdgeRouter Users of APT28's MooBot Threat

In a new joint advisory, cybersecurity and intelligence agencies from the U.S. and other countries are urging users of Ubiquiti EdgeRouter to take protective measures, weeks after a botnet comprising infected routers was felled by law enforcement as part of an operation codenamed Dying Ember. The...

New 'MichaelKors' Ransomware-as-a-Service Targeting Linux and VMware ESXi Systems

A new ransomware-as-service RaaS operation called MichaelKors has become the latest file-encrypting malware to target Linux and VMware ESXi systems as of April 2023. The development points to cybercriminal actors increasingly setting their eyes on the ESXi, cybersecurity firm CrowdStrike said in ...

SUSE CVE-2004-1073

The openexec function in the execve functionality exec.c in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, allows local users to read non-readable ELF binaries by using the interpreter PTINTERP functionality...

ELFXtract - An Automated Analysis Tool Used For Enumerating ELF Binaries

ELFXtract is an automated analysis tool used for enumerating ELF binaries Powered by Radare2 and r2ghidra This is specially developed for PWN challenges and it has many automated features It almost displays every details of the ELF and also decompiles its ASM to C code using r2ghidra Decompiling...

Libelfin Denial of Service Vulnerability (CNVD-2021-66404)

Libelfin is a C 11 library for reading ELF binaries and DWARFv4 debug information. A denial of service vulnerability exists in the elf::section::asstrtab function of Libelfin 0.3. An attacker could exploit this vulnerability to cause a denial of service via a specially crafted ELF file that cause...

Libelfin Denial of Service Vulnerability (CNVD-2021-66403)

Libelfin is a C 11 library for reading ELF binaries and DWARFv4 debug information. linetable::linetable function of Libelfin 0.3 is vulnerable to a denial of service. An attacker could exploit this vulnerability to cause a denial of service via a specially crafted ELF file causing a segmentation...

Libelfin Denial of Service Vulnerability (CNVD-2021-66401)

Libelfin is a C 11 library for reading ELF binaries and DWARFv4 debug information. a denial of service vulnerability exists in the dwarf::tostring function of Libelfin 0.3. An attacker could exploit this vulnerability to cause a denial of service via a specially crafted ELF file causing a...

Libelfin 安全漏洞

Libelfin is a C 11 library for reading ELF binaries and DWARFv4 debug information. libelfin has a buffer overflow vulnerability in v0.3, which stems from incorrect handling of the dwarf::cursor::skipform function leading to a buffer overflow that can be exploited by an attacker via a crafted...

ALBA-2021:1091 file bug fix and enhancement update

The file command is used to identify a particular file according to the type of data the file contains. It can identify many different file types, including Executable and Linkable Format ELF binary files, system libraries, RPM packages, and different graphics formats. Bug Fixes and Enhancements:...

Fedora Update for file FEDORA-2019-554c3c691f

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 30 Update: file-5.36-5.fc30

The file command is used to identify a particular file according to the type of data contained by the file. File can identify many different file types, including ELF binaries, system libraries, RPM packages, and different graphics formats...