elfutils

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description Utilities to handle ELF object files and DWARF debugging information
Version 0.174-1 [core]

Open

Group Affected Fixed Severity Status Ticket
AVG-785 0.174-1 Medium Vulnerable
Issue Group Severity Remote Type Description
CVE-2018-18521 AVG-785 Medium Yes Denial of service
Divide-by-zero vulnerabilities in the function arlib_add_symbols() in arlib.c in elfutils 0.174 allow remote attackers to cause a denial of service...
CVE-2018-18520 AVG-785 Medium Yes Denial of service
An Invalid Memory Address Dereference exists in the function elf_end in libelf in elfutils through v0.174. Although eu-size is intended to support ar files...
CVE-2018-18310 AVG-785 Medium Yes Denial of service
An invalid memory address dereference was discovered in dwfl_segment_report_module.c in libdwfl in elfutils through v0.174. The vulnerability allows...