AVG-785 log
| Package | elfutils |
| Status | Fixed |
| Severity | Medium |
| Type | denial of service |
| Affected | 0.174-1 |
| Fixed | 0.175-1 |
| Current |
0.194-1 [core-testing] 0.193-5 [core] |
| Ticket | None |
| Created | Mon Oct 22 15:11:27 2018 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2018-18521 | Medium | Yes | Denial of service | Divide-by-zero vulnerabilities in the function arlib_add_symbols() in arlib.c in elfutils 0.174 allow remote attackers to cause a denial of service... |
| CVE-2018-18520 | Medium | Yes | Denial of service | An Invalid Memory Address Dereference exists in the function elf_end in libelf in elfutils through v0.174. Although eu-size is intended to support ar files... |
| CVE-2018-18310 | Medium | Yes | Denial of service | An invalid memory address dereference was discovered in dwfl_segment_report_module.c in libdwfl in elfutils through v0.174. The vulnerability allows... |
| Date | Advisory | Package | Type |
|---|---|---|---|
| 08 Jan 2019 | ASA-201901-3 | elfutils | denial of service |
| Notes |
|---|
Fixed in 0.175 |