elfutils bug fix and enhancement update

An update is available for elfutils. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Enterpris...

SUSE: Security Advisory (SUSE-SU-2019:1733-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2015:0292-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

The vulnerability of the arlib_add_symbols() function in the arlib.c file of the ELF object processing utility suite Elfutils, related to division by zero, allows a malicious actor to cause a service failure.

The vulnerability of the arlibaddsymbols function in the arlib.c file of the ELF object processing utility Elfutils is related to incorrect handling of zero shentsize. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

PT-2021-7965 · Elfutils +4 · Elfutils +4

Name of the Vulnerable Software and Affected Versions: Elfutils versions 0.183 Description: The issue is related to the handle symtab function in the readelf.c component of the Elfutils utility for modifying and analyzing ELF binary files. It involves an infinite loop with an unreachable exit...

CentOS 8 : elfutils (CESA-2019:3575)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2019:3575 advisory. - elfutils: buffer over-read in the eblobjectnote function in eblobjnote.c in libebl CVE-2019-7146 - elfutils: heap-based buffer over-read in...

new packages: gcc-toolset-10-elfutils

GCC Toolset is a compiler toolset that provides recent versions of development tools. GCC Toolset is an Application Stream packaged as a Software Collection. This enhancement update adds the gcc-toolset-10-elfutils packages to AlmaLinux Eneterprise Linux 8. For instructions on usage, see Using GC...

ALEA-2020:4571 elfutils bug fix and enhancement update

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...

elfutils bug fix and enhancement update

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...

Denial Of Service (DoS)

elfutils is vulnerable to denial of service DoS. The vulnerability exists as the eblobjectnotetypename function in eblobjnotetypename.c allows remote attackers to cause a denial of service with a crafted ELF file...

Denial Of Service (DoS)

elfutils is vulnerable to denial of service. A heap-based buffer over-read in the checkgroup function in elflint.c allow a remote attacker to cause crash the application using a malicious ELF file...

Denial Of Service (DoS)

elfutils is vulnerable to denial of service DoS. The vulnerability exists as elflint.c does not validate the number of sections and the number of segments, allowing remote attackers to cause a denial of service through a crafted ELF file...

Buffer Overflow

elfutils is vulnerable to buffer overflow. The checksymtabshndx function in elflint.c in elfutils allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted ELF file...

EulerOS 2.0 SP2 : elfutils (EulerOS-SA-2020-1634)

According to the version of the elfutils packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - libdw in elfutils 0.173 checks the end of the attributes list incorrectly in dwarfgetabbrev in dwarfgetabbrev.c and dwarfhasattr in dwarfhasattr....

Huawei EulerOS: Security Advisory for elfutils (EulerOS-SA-2020-1634)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS Virtualization for ARM 64 3.0.2.0 : httpd (EulerOS-SA-2020-1552)

According to the versions of the httpd packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - In Apache HTTP server 2.4.0 to 2.4.39, Redirects configured with modrewrite that were intended to be self-referential...

Huawei EulerOS: Security Advisory for elfutils (EulerOS-SA-2020-1448)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS Virtualization 3.0.2.2 : elfutils (EulerOS-SA-2020-1448)

According to the versions of the elfutils packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In elfutils 0.175, a heap-based buffer over-read was discovered in the function elf32xlatetom in elf32xlatetom.c in libelf. A...

elfutils: Double-free due to double decompression of sections in crafted ELF causes crash

libelf/elfend.c in elfutils 0.173 allows remote attackers to cause a denial of service double free and application crash or possibly have unspecified other impact because it tries to decompress twice...

RHEL 7 : elfutils (RHSA-2020:1471)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1471 advisory. The elfutils packages contain a number of utility programs and libraries related to the creation and maintenance of executable code. Security Fixes:...