#VU15371 Segmentation fault in elfutils - CVE-2018-18310


| Updated: 2018-10-16

Vulnerability identifier: #VU15371

Vulnerability risk: Low

CVSSv4.0: 5.4 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P/U:Clear]

CVE-ID: CVE-2018-18310

CWE-ID: CWE-20

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
elfutils
Server applications / File servers (FTP/HTTP)

Vendor: Sourceware

Description

The vulnerability allows a local attacker to cause DoS condition on the target system.

The vulnerability exists in the dwfl_segment_report_module.c source code file in the libdwfl library due to improper handling of Executable and Linkable Format (ELF) files. A local attacker can send an ELF file that submits malicious input, execute the eu-stack command, trigger a segmentation fault and cause the affected application to crash.

Mitigation
Cybersecurity Help is currently unaware of any solutions addressing the vulnerability.

Vulnerable software versions

elfutils: 0.133 - 0.174

External links
https://sourceware.org/bugzilla/show_bug.cgi?id=23752

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.


Latest bulletins with this vulnerability


VMware Tanzu products update for elfutils
Ubuntu update for elfutils
SUSE update for dwarves and elfutils
Red Hat Enterprise Linux 7 update for elfutils
OpenSUSE Linux update for elfutils
Arch Linux update for elfutils
Segmentation fault in elfutils (Alpine package)
Arch Linux update for elfutils
Denial of service in elfutils