Primary

Context

GNU Elfutils Null Pointer Dereference Vulnerability in Eu-Read Component

Vulnerability

A null pointer dereference vulnerability has been identified in GNU elfutils version 0.192. This issue arises in the eu-read component, specifically within the handle_dynamic_symtab function of readelf.c. The vulnerability requires local exploitation.

Impact

Exploitation of this vulnerability leads to a null pointer dereference, causing a crash or denial-of-service condition.

Remediation

Users are advised to apply the patch identified as b38e562a4c907e08171c76b8b2def8464d5a104a to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.7

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.7

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

GNU Elfutils Null Pointer Dereference Vulnerability in Eu-Read Component

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating