vulnerability

Huawei EulerOS: CVE-2017-7613: elfutils security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:M/Au:N/C:N/I:N/A:P)	Apr 9, 2017	Dec 4, 2019	Apr 1, 2026

Severity

CVSS

(AV:N/AC:M/Au:N/C:N/I:N/A:P)

Published

Apr 9, 2017

Added

Dec 4, 2019

Modified

Apr 1, 2026

Description

elflint.c in elfutils 0.168 does not validate the number of sections and the number of segments, which allows remote attackers to cause a denial of service (memory consumption) via a crafted ELF file.

Solutions

huawei-euleros-2_0_sp2-upgrade-elfutilshuawei-euleros-2_0_sp2-upgrade-elfutils-develhuawei-euleros-2_0_sp2-upgrade-elfutils-libelfhuawei-euleros-2_0_sp2-upgrade-elfutils-libelf-develhuawei-euleros-2_0_sp2-upgrade-elfutils-libs

References

CVE-2017-7613
https://attackerkb.com/topics/CVE-2017-7613
CWE-20
EULEROS-EulerOS-SA-2019-2510
EUVD-EUVD-2017-16618
https://euvd.enisa.europa.eu/vulnerability/EUVD-2017-16618

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report