CVE-2020-24822

Name
CVE-2020-24822
Description
A vulnerability in the dwarf::cursor::uleb function of Libelfin v0.3 allows attackers to cause a denial of service (DOS) through a segmentation fault via a crafted ELF file.
NVD Severity
medium
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
MISC https://github.com/xiaoxiongwang/function_bugs/tree/master/libelfin#segv-in-function-dwarfcursoruleb128-at-dwarfinternalhh154
MISC https://github.com/aclements/libelfin/issues/50

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:libelfin_project:libelfin:0.3:*:*:*:*:*:*:* libelfin == None == 0.3

Vulnerable and fixed packages

Source package Branch Version Maintainer Status