Medium: elfutils

Issue Overview: Integer overflow in the checksection function in dwarfbeginelf.c in the libdw library, as used in elfutils 0.153 and possibly through 0.158 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a malformed compressed debug...

Ubuntu: Security Advisory (USN-2188-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for elfutils FEDORA-2014-5031

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu Update for elfutils USN-2188-1

Check for the Version of elfutils OpenVAS Vulnerability Test $Id: gbubuntuUSN21881.nasl 7957 2017-12-01 06:40:08Z santu $ Ubuntu Update for elfutils USN-2188-1 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free...

Fedora Update for elfutils FEDORA-2014-5031

Check for the Version of elfutils OpenVAS Vulnerability Test Fedora Update for elfutils FEDORA-2014-5031 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

[USN-2188-1] elfutils vulnerability

========================================================================== Ubuntu Security Notice USN-2188-1 April 30, 2014 elfutils vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

elfutils libdw memory corruption

Memory corruption on ELF parsing...

Ubuntu 14.04 LTS : elfutils vulnerability (USN-2188-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-2188-1 advisory. Florian Weimer discovered that the elfutils libdw library incorrectly handled malformed compressed debug sections in ELF files. If a user or automated system were...

USN-2188-1: elfutils vulnerability

Florian Weimer discovered that the elfutils libdw library incorrectly handled malformed compressed debug sections in ELF files. If a user or automated system were tricked into processing a specially crafted ELF file, applications linked against libdw could be made to crash, or possibly execute...

USN-2188-1 elfutils vulnerability

Florian Weimer discovered that the elfutils libdw library incorrectly handled malformed compressed debug sections in ELF files. If a user or automated system were tricked into processing a specially crafted ELF file, applications linked against libdw could be made to crash, or possibly execute...

[SECURITY] Fedora 19 Update: elfutils-0.158-3.fc19

Elfutils is a collection of utilities, including ld a linker, nm for listing symbols from object files, size for listing the section sizes of an object or archive file, strip for discarding symbols, readelf to see the raw ELF file structures, and elflint to check for well-formed ELF files...

Fedora 19 : elfutils-0.158-3.fc19 (2014-5031)

Fix CVE-2014-0172 elfutils: integer overflow, leading to a heap-based buffer overflow in libdw. Update to 0.158. Support for aarch64. Unwinder support for i386, x8664, s390, s390x, ppc and ppc64. Add eu-stack. Note that Tenable Network Security has extracted the preceding description block direct...

Fedora Update for elfutils FEDORA-2014-5015

Check for the Version of elfutils OpenVAS Vulnerability Test Fedora Update for elfutils FEDORA-2014-5015 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Fedora 20 : elfutils-0.158-3.fc20 (2014-5015)

Fix CVE-2014-0172 elfutils: integer overflow, leading to a heap-based buffer overflow in libdw. Update to 0.158. Support for aarch64. Unwinder support for i386, x8664, s390, s390x, ppc and ppc64. Add eu-stack. Note that Tenable Network Security has extracted the preceding description block direct...

Fedora Update for elfutils FEDORA-2014-5015

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 20 Update: elfutils-0.158-3.fc20

Elfutils is a collection of utilities, including ld a linker, nm for listing symbols from object files, size for listing the section sizes of an object or archive file, strip for discarding symbols, readelf to see the raw ELF file structures, and elflint to check for well-formed ELF files...

MGASA-2014-0177 Updated elfutils package fixes CVE-2014-0172

Updated elfutils packages fix security vulnerability: The libdw library provides support for accessing DWARF debugging information inside ELF files. An integer overflow flaw in checksection, leading to a heap-based buffer overflow, was found in the libdw library. A malicious ELF file could cause ...

Updated elfutils package fixes CVE-2014-0172

Updated elfutils packages fix security vulnerability: The libdw library provides support for accessing DWARF debugging information inside ELF files. An integer overflow flaw in checksection, leading to a heap-based buffer overflow, was found in the libdw library. A malicious ELF file could cause ...

CVE-2014-0172

Summary: CVE-2014-0172 affects elfutils (libdw) with an integer overflow in check_section() of dwarf_begin_elf.c, causing a heap-based buffer overflow. This could allow a remote attacker to crash the affected application or potentially execute arbitrary code through a malformed compressed debug s...

Gentoo Security Advisory GLSA 200506-01 (binutils)

The remote host is missing updates announced in advisory GLSA 200506-01. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...