Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
elfutils vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2017-7613
elflint.c in elfutils 0.168 does not validate the number of sections and the number of segments, which allows remote malicious users to cause a denial of service (memory consumption) via a crafted ELF file.
Elfutils Project Elfutils 0.168
Debian Debian Linux 8.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 14.04
5.5
CVSSv3
CVE-2017-7608
The ebl_object_note_type_name function in eblobjnotetypename.c in elfutils 0.168 allows remote malicious users to cause a denial of service (heap-based buffer over-read and application crash) via a crafted ELF file.
Elfutils Project Elfutils 0.168
Debian Debian Linux 8.0
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
5.5
CVSSv3
CVE-2017-7611
The check_symtab_shndx function in elflint.c in elfutils 0.168 allows remote malicious users to cause a denial of service (heap-based buffer over-read and application crash) via a crafted ELF file.
Elfutils Project Elfutils 0.168
Debian Debian Linux 8.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 14.04
5.5
CVSSv3
CVE-2016-10254
The allocate_elf function in common.h in elfutils prior to 0.168 allows remote malicious users to cause a denial of service (crash) via a crafted ELF file, which triggers a memory allocation failure.
Elfutils Project Elfutils
5.5
CVSSv3
CVE-2016-10255
The __libelf_set_rawdata_wrlock function in elf_getdata.c in elfutils prior to 0.168 allows remote malicious users to cause a denial of service (crash) via a crafted (1) sh_off or (2) sh_size ELF header value, which triggers a memory allocation failure.
Elfutils Project Elfutils
NA
CVE-2005-1704
Integer overflow in the Binary File Descriptor (BFD) library for gdb prior to 6.3, binutils, elfutils, and possibly other packages, allows user-assisted malicious users to execute arbitrary code via a crafted object file that specifies a large number of section headers, leading t...
Gnu Gdb
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3