Gnu Elfutils vulnerabilities

CVE-2025-1365 [MEDIUM] CWE-119 CVE-2025-1365: A vulnerability, which was classified as critical, was found in GNU elfutils 0.192. This affects the A vulnerability, which was classified as critical, was found in GNU elfutils 0.192. This affects the function process_symtab of the file readelf.c of the component eu-readelf. The manipulation of the argument D/a leads to buffer overflow. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. Th

CVE-2025-1371 [MEDIUM] CWE-404 CVE-2025-1371: A vulnerability has been found in GNU elfutils 0.192 and classified as problematic. This vulnerabili A vulnerability has been found in GNU elfutils 0.192 and classified as problematic. This vulnerability affects the function handle_dynamic_symtab of the file readelf.c of the component eu-read. The manipulation leads to null pointer dereference. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. The patch

CVE-2025-1372 [MEDIUM] CWE-119 CVE-2025-1372: A vulnerability was found in GNU elfutils 0.192. It has been declared as critical. Affected by this A vulnerability was found in GNU elfutils 0.192. It has been declared as critical. Affected by this vulnerability is the function dump_data_section/print_string_section of the file readelf.c of the component eu-readelf. The manipulation of the argument z/x leads to buffer overflow. An attack has to be approached locally. The exploit has been disclosed

CVE-2025-1377 [MEDIUM] CWE-404 CVE-2025-1377: A vulnerability, which was classified as problematic, has been found in GNU elfutils 0.192. This iss A vulnerability, which was classified as problematic, has been found in GNU elfutils 0.192. This issue affects the function gelf_getsymshndx of the file strip.c of the component eu-strip. The manipulation leads to denial of service. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. The identifier

CVE-2025-1376 [LOW] CWE-404 CVE-2025-1376: A vulnerability classified as problematic was found in GNU elfutils 0.192. This vulnerability affect A vulnerability classified as problematic was found in GNU elfutils 0.192. This vulnerability affects the function elf_strptr in the library /libelf/elf_strptr.c of the component eu-strip. The manipulation leads to denial of service. It is possible to launch the attack on the local host. The complexity of an attack is rather high. The exploitation appear

CVE-2025-1352 [LOW] CWE-119 CVE-2025-1352: A vulnerability has been found in GNU elfutils 0.192 and classified as critical. This vulnerability A vulnerability has been found in GNU elfutils 0.192 and classified as critical. This vulnerability affects the function __libdw_thread_tail in the library libdw_alloc.c of the component eu-readelf. The manipulation of the argument w leads to memory corruption. The attack can be initiated remotely. The complexity of an attack is rather high. The exploitat