EUVD-2019-16698

Malware in sbrugna...

SUSE CVE-2018-18520

An Invalid Memory Address Dereference exists in the function elfend in libelf in elfutils through v0.174. Although eu-size is intended to support ar files inside ar files, handlear in size.c closes the outer ar file before handling all inner entries. The vulnerability allows attackers to cause a...

The vulnerability of the elf_end function in the libelf library, a set of utilities for processing ELF objects, relates to the issue of allowing the output operation to be within acceptable data buffer limits. This vulnerability allows an attacker to cause a service failure.

The vulnerability of the elfend function in the libelf library is related to improper closure of the ar file. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

Design/Logic Flaw

An attempted excessive memory allocation was discovered in the function readlongnames in elfbegin.c in libelf in elfutils 0.174. Remote attackers could leverage this vulnerability to cause a denial-of-service via crafted elf input, which leads to an out-of-memory exception. NOTE: The maintainers...