Описание
An invalid memory address dereference was discovered in dwfl_segment_report_module.c in libdwfl in elfutils through v0.174. The vulnerability allows attackers to cause a denial of service (application crash) with a crafted ELF file, as demonstrated by consider_notes.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 0.170-0.4ubuntu0.1 |
| cosmic | released | 0.170-0.5.0ubuntu1.1 |
| devel | not-affected | 0.176-1.1 |
| disco | not-affected | 0.176-1 |
| eoan | not-affected | 0.176-1.1 |
| esm-infra-legacy/trusty | released | 0.158-0ubuntu5.3+esm1 |
| esm-infra/bionic | released | 0.170-0.4ubuntu0.1 |
| esm-infra/focal | not-affected | 0.176-1.1 |
| esm-infra/xenial | released | 0.165-3ubuntu1.2 |
| focal | not-affected | 0.176-1.1 |
Показывать по
4.3 Medium
CVSS2
5.5 Medium
CVSS3
Связанные уязвимости
An invalid memory address dereference was discovered in dwfl_segment_report_module.c in libdwfl in elfutils through v0.174. The vulnerability allows attackers to cause a denial of service (application crash) with a crafted ELF file, as demonstrated by consider_notes.
An invalid memory address dereference was discovered in dwfl_segment_report_module.c in libdwfl in elfutils through v0.174. The vulnerability allows attackers to cause a denial of service (application crash) with a crafted ELF file, as demonstrated by consider_notes.
An invalid memory address dereference was discovered in dwfl_segment_r ...
An invalid memory address dereference was discovered in dwfl_segment_report_module.c in libdwfl in elfutils through v0.174. The vulnerability allows attackers to cause a denial of service (application crash) with a crafted ELF file, as demonstrated by consider_notes.
Уязвимость библиотеки libdwfl утилиты для модификации и анализа бинарных файлов ELF Elfutils, позволяющая нарушителю вызвать отказ в обслуживании
4.3 Medium
CVSS2
5.5 Medium
CVSS3