SUSE: 2019:1486-1 Moderate: Elfutils Denial Of Service And Buffer Overflow

suse

June 13, 2019

An update that fixes 15 vulnerabilities is now available

Summary

This update for elfutils fixes the following issues: Security issues fixed: - CVE-2017-7607: Fixed a heap-based buffer overflow in handle_gnu_hash (bsc#1033084) - CVE-2017-7608: Fixed a heap-based buffer overflow in ebl_object_note_type_name() (bsc#1033085) - CVE-2017-7609: Fixed a memory allocation failure in __libelf_decompress (bsc#1033086) - CVE-2017-7610: Fixed a heap-based buffer overflow in check_group (bsc#1033087) - CVE-2017-7611: Fixed a denial of service via a crafted ELF file (bsc#1033088) - CVE-2017-7612: Fixed a denial of service in check_sysv_hash() via a crafted ELF file (bsc#1033089) - CVE-2017-7613: Fixed denial of service caused by the missing validation of the number of sections and the number of segments in a crafted ELF file (bsc#1033090)

Topics Covered

security advisory moderate denial of service buffer overflow patch SUSE elfutils

References

#1033084 #1033085 #1033086 #1033087 #1033088

#1033089 #1033090 #1106390 #1107066 #1107067

#1111973 #1112723 #1112726 #1123685 #1125007

Cross- CVE-2017-7607 CVE-2017-7608 CVE-2017-7609

CVE-2017-7610 CVE-2017-7611 CVE-2017-7612

CVE-2017-7613 CVE-2018-16062 CVE-2018-16402

CVE-2018-16403 CVE-2018-18310 CVE-2018-18520

CVE-2018-18521 CVE-2019-7150 CVE-2019-7665

Affected Products:

SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1

SUSE Linux Enterprise Module for Basesystem 15-SP1

SUSE Linux Enterprise Module for Basesystem 15

https://www.suse.com/security/cve/CVE-2017-7607.html

https://www.suse.com/security/cve/CVE-2017-7608.html

https://www.suse.com/security/cve/CVE-2017-7609.html

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2019:1486-1

Rating: moderate

Topics Covered

security advisory moderate denial of service buffer overflow patch SUSE elfutils

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2019:1486-1 Moderate: Elfutils Denial Of Service And Buffer Overflow

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2019:1486-1 Moderate: Elfutils Denial Of Service And Buffer Overflow

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!