Primary

Context

GNU Elfutils Memory Corruption Vulnerability in Eu-Readelf

Vulnerability

A critical memory corruption vulnerability has been identified in GNU elfutils version 0.192. The issue arises in the eu-readelf component, specifically within the __libdw_thread_tail function of the libdw_alloc.c library. The vulnerability can be exploited remotely, although the complexity of the attack is considered high, making exploitation difficult.

Impact

Exploitation of this vulnerability leads to memory corruption, which could potentially be exploited to execute arbitrary code or cause a denial-of-service condition.

Remediation

Users are advised to apply the patch named 2636426a091bd6c6f7f02e49ab20d4cdc6bfc753 to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

GNU Elfutils Memory Corruption Vulnerability in Eu-Readelf

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating