[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

CVE-2018-16403 -- elfutils

ID: oval:org.secpod.oval:def:1902063Date: (C)2019-06-10   (M)2023-12-20
Class: VULNERABILITYFamily: unix




libdw in elfutils 0.173 checks the end of the attributes list incorrectly in dwarf_getabbrev in dwarf_getabbrev.c and dwarf_hasattr in dwarf_hasattr.c, leading to a heap-based buffer over-read and an application crash.

Platform:
Ubuntu 16.04
Ubuntu 18.04
Product:
elfutils
Reference:
CVE-2018-16403
CVE    1
CVE-2018-16403
CPE    4
cpe:/o:ubuntu:ubuntu_linux:16.04
cpe:/a:elfutils_project:elfutils
cpe:/o:ubuntu:ubuntu_linux:18.04
cpe:/o:ubuntu:ubuntu_linux:18.10
...

© SecPod Technologies