Lucene search
Veracode Vulnerability DatabaseVERACODE:27171HistorySep 21, 2020 - 6:39 a.m.
Denial Of Service (DoS)
2020-09-2106:39:53
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
0.01 Low
EPSS
Percentile
83.6%
elfutils is vulnerable to denial of service. The allocate_elf function in common.h allows remote attackers to crash the application via a malicious ELF file, which would trigger a memory allocation failure.
| CPE | Name | Operator | Version |
|---|---|---|---|
| elfutils:xenial | eq | 0.165-3ubuntu1 | |
| elfutils:trusty | eq | 0.158-0ubuntu5 | |
| elfutils:xenial | eq | 0.165-3ubuntu1 | |
| elfutils:trusty | eq | 0.158-0ubuntu5 |
References
Related
nessus
nessus
EulerOS 2.0 SP1 : elfutils (EulerOS-SA-2017-1142)
2017-08-08 00:00:00
EulerOS 2.0 SP2 : elfutils (EulerOS-SA-2017-1143)
2017-08-08 00:00:00
Ubuntu 14.04 LTS / 16.04 LTS : elfutils vulnerabilities (USN-3670-1)
2018-06-06 00:00:00
nvd
nvd
CVE-2016-10254
2017-03-23 16:59:00
cvelist
cvelist
CVE-2016-10254
2017-03-23 16:00:00
debiancve
debiancve
CVE-2016-10254
2017-03-23 16:59:00
cve
cve
CVE-2016-10254
2017-03-23 16:59:00
prion
prion
Design/Logic Flaw
2017-03-23 16:59:00
openvas
openvas
Huawei EulerOS: Security Advisory for elfutils (EulerOS-SA-2017-1143)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for elfutils (EulerOS-SA-2017-1142)
2020-01-23 00:00:00
Ubuntu: Security Advisory (USN-3670-1)
2018-06-06 00:00:00
ubuntucve
ubuntucve
CVE-2016-10254
2017-03-23 00:00:00
osv
osv
CVE-2016-10254
2017-03-23 16:59:00
redhatcve
redhatcve
CVE-2016-10254
2017-08-02 20:50:02
ubuntu
ubuntu
elfutils vulnerabilities
2018-06-05 00:00:00
mageia
mageia
Updated elfutils packages fix security vulnerabilities
2018-01-03 13:32:10
gentoo
gentoo
elfutils: Multiple vulnerabilities
2017-10-13 00:00:00
ibm
ibm