Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-h443-vvj7-wc74

Опубликовано: 13 мая 2022
Источник: github
Github: Не прошло ревью
CVSS3: 5.5

Описание

An invalid memory address dereference was discovered in dwfl_segment_report_module.c in libdwfl in elfutils through v0.174. The vulnerability allows attackers to cause a denial of service (application crash) with a crafted ELF file, as demonstrated by consider_notes.

An invalid memory address dereference was discovered in dwfl_segment_report_module.c in libdwfl in elfutils through v0.174. The vulnerability allows attackers to cause a denial of service (application crash) with a crafted ELF file, as demonstrated by consider_notes.

Ссылки

EPSS

Процентиль: 26%
0.00093
Низкий

5.5 Medium

CVSS3

CVE ID

CVE-2018-18310

Дефекты

CWE-119

Связанные уязвимости

ubuntu логотип

CVE-2018-18310

CVSS3: 5.5
ubuntu
больше 7 лет назад

An invalid memory address dereference was discovered in dwfl_segment_report_module.c in libdwfl in elfutils through v0.174. The vulnerability allows attackers to cause a denial of service (application crash) with a crafted ELF file, as demonstrated by consider_notes.

redhat логотип

CVE-2018-18310

CVSS3: 3.3
redhat
больше 7 лет назад

An invalid memory address dereference was discovered in dwfl_segment_report_module.c in libdwfl in elfutils through v0.174. The vulnerability allows attackers to cause a denial of service (application crash) with a crafted ELF file, as demonstrated by consider_notes.

nvd логотип

CVE-2018-18310

CVSS3: 5.5
nvd
больше 7 лет назад

An invalid memory address dereference was discovered in dwfl_segment_report_module.c in libdwfl in elfutils through v0.174. The vulnerability allows attackers to cause a denial of service (application crash) with a crafted ELF file, as demonstrated by consider_notes.

debian логотип

CVE-2018-18310

CVSS3: 5.5
debian
больше 7 лет назад

An invalid memory address dereference was discovered in dwfl_segment_r ...

fstec логотип

BDU:2018-01517

CVSS3: 5.5
fstec
больше 7 лет назад

Уязвимость библиотеки libdwfl утилиты для модификации и анализа бинарных файлов ELF Elfutils, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 26%
0.00093
Низкий

5.5 Medium

CVSS3

CVE ID

CVE-2018-18310

Дефекты

CWE-119