AVG-785

Package elfutils
Status Fixed
Severity Medium
Type denial of service
Affected 0.174-1
Fixed 0.175-1
Current 0.175-1 [core]
Ticket None
Created Mon Oct 22 15:11:27 2018
Issue Severity Remote Type Description
CVE-2018-18521 Medium Yes Denial of service
Divide-by-zero vulnerabilities in the function arlib_add_symbols() in arlib.c in elfutils 0.174 allow remote attackers to cause a denial of service...
CVE-2018-18520 Medium Yes Denial of service
An Invalid Memory Address Dereference exists in the function elf_end in libelf in elfutils through v0.174. Although eu-size is intended to support ar files...
CVE-2018-18310 Medium Yes Denial of service
An invalid memory address dereference was discovered in dwfl_segment_report_module.c in libdwfl in elfutils through v0.174. The vulnerability allows...
Date Advisory Package Description
08 Jan 2019 ASA-201901-3 elfutils denial of service
Notes
Fixed in 0.175