CVE-2019-7664

Source
Severity Medium
Remote No
Type Denial of service
Description
In elfutils 0.175, a negative-sized memcpy is attempted in elf_cvt_note in libelf/note_xlate.h because of an incorrect overflow check. Crafted elf input causes a segmentation fault, leading to denial of service (program crash).
Group Package Affected Fixed Severity Status Ticket
AVG-863 libelf 0.175-1 0.176-1 Medium Fixed
Date Advisory Group Package Severity Description
18 Mar 2019 ASA-201903-9 AVG-863 libelf Medium denial of service
References
https://sourceware.org/bugzilla/show_bug.cgi?id=24084