Unrated severityNVD Advisory· Published Jan 29, 2019· Updated Aug 4, 2024
CVE-2019-7146
CVE-2019-7146
Description
In elfutils 0.175, there is a buffer over-read in the ebl_object_note function in eblobjnote.c in libebl. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted elf file, as demonstrated by eu-readelf.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
12- Range: 0.175
- osv-coords11 versionspkg:rpm/opensuse/dwarves&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/dwarves&distro=openSUSE%20Leap%20Micro%205.2pkg:rpm/opensuse/elfutils&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/elfutils&distro=openSUSE%20Leap%20Micro%205.2pkg:rpm/opensuse/elfutils&distro=openSUSE%20Tumbleweedpkg:rpm/suse/dwarves&distro=SUSE%20Linux%20Enterprise%20Micro%205.1pkg:rpm/suse/dwarves&distro=SUSE%20Linux%20Enterprise%20Micro%205.2pkg:rpm/suse/dwarves&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3pkg:rpm/suse/elfutils&distro=SUSE%20Linux%20Enterprise%20Micro%205.1pkg:rpm/suse/elfutils&distro=SUSE%20Linux%20Enterprise%20Micro%205.2pkg:rpm/suse/elfutils&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3
< 1.22-150300.7.3.1+ 10 more
- (no CPE)range: < 1.22-150300.7.3.1
- (no CPE)range: < 1.22-150300.7.3.1
- (no CPE)range: < 0.177-150300.11.3.1
- (no CPE)range: < 0.177-150300.11.3.1
- (no CPE)range: < 0.185-3.1
- (no CPE)range: < 1.22-150300.7.3.1
- (no CPE)range: < 1.22-150300.7.3.1
- (no CPE)range: < 1.22-150300.7.3.1
- (no CPE)range: < 0.177-150300.11.3.1
- (no CPE)range: < 0.177-150300.11.3.1
- (no CPE)range: < 0.177-150300.11.3.1
Patches
Vulnerability mechanics
References
3- access.redhat.com/errata/RHSA-2019:3575mitrevendor-advisoryx_refsource_REDHAT
- sourceware.org/bugzilla/show_bug.cgimitrex_refsource_MISC
- sourceware.org/bugzilla/show_bug.cgimitrex_refsource_MISC
News mentions
0No linked articles in our index yet.