VDB
GCVE-VVD-MAGEIA-2019-222
GCVE-VVD-MAGEIA-2019-222
Advisory Published
It was discovered that elfutils incorrectly handled certain malformed
files. If a user or automated system were tricked into processing a
specially crafted file, elfutils could be made to crash or consume
resources, resulting in a denial of service (CVE-2017-7607, CVE-2017-7608,
CVE-2017-7609, CVE-2017-7610, CVE-2017-7611, CVE-2017-7612, CVE-2017-7613,
CVE-2018-16062, CVE-2018-16402, CVE-2018-16403, CVE-2018-18310,
CVE-2018-18520, CVE-2018-18521, CVE-2019-7149, CVE-2019-7150,
CVE-2019-7665).
In elfutils 0.175, a negative-sized memcpy is attempted in elf_cvt_note
in libelf/note_xlate.h because of an incorrect overflow check. Crafted elf
input causes a segmentation fault, leading to denial of service (program
crash) (CVE-2019-7664).
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | elfutils | 0 (affected), 0.176-1.mga6 (unaffected), 0 (affected), 0.176-1.mga6 (unaffected) | — |
| Mageia | unzip | 0 (affected), 6.1c-3.1.mga7 (unaffected) | — |
Aliases
Transitive aliases
CNVD-2017-05326EUVD-2017-16618EUVD-2017-16614CVE-2016-10254CNVD-2017-05640GHSA-j343-3qch-m53hGHSA-5q28-cp33-8xjcSUSE-SU-2022:2614-2CVE-2016-10255EUVD-2016-1439GHSA-f928-x7g5-gh7vVVD-MAGEIA-2018-27GHSA-6mfq-hfj8-4m6fEUVD-2017-16617CNVD-2017-05639SUSE-SU-2022:2614-1GHSA-39hq-3m25-w277EUVD-2016-1440OPENSUSE-SU-2019:1590-1BDU:2019-01631EUVD-2017-16616EUVD-2017-16612EUVD-2017-16613GHSA-97hq-32mc-c642GSD-2016-10255GHSA-78hq-848f-rjwpGHSA-64xp-m6w3-x4fwBDU:2019-01633SUSE-SU-2019:1486-1GSD-2016-10254GHSA-55wm-j5xm-4vvrEUVD-2017-16615GSD-2017-7609
References
Browse GCVE Records
100 records in the GCVE database · Updated April 16, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.