Home CVE Database CVE-2018-18521

CVE-2018-18521

Description

Divide-by-zero vulnerabilities in the function arlib_add_symbols() in arlib.c in elfutils 0.174 allow remote attackers to cause a denial of service (application crash) with a crafted ELF file, as demonstrated by eu-ranlib, because a zero sh_entsize is mishandled.

Priority: MEDIUM
CVSS v3: 5.5
Publish Date: Oct 19, 2018
Related ID: --
CVSS v2: MEDIUM
Modified Date: Oct 19, 2018

Find out more about CVE-2018-18521 from the MITRE-CVE dictionary and NIST NVD


Products Affected

Login may be required to access defects or downloads.

Related Products

Product Name Status Defect Fixed Downloads
Linux 7 SCP Not Vulnerable -- -- --
Linux 7 CGP Not Vulnerable -- -- --

Comments

elfutils

Live chat
Online