Overview

File _patchinfo of Package patchinfo.41427

<patchinfo incident="41427">
  <issue tracker="bnc" id="1237241">VUL-0: CVE-2025-1376: elfutils: denial of service in  function elf_strptr in the library /libelf/elf_strptr.c of the component eu-strip</issue>
  <issue tracker="bnc" id="1237242">VUL-0: CVE-2025-1377: elfutils: denial of service in function gelf_getsymshndx of the file strip.c of the component eu-strip</issue>
  <issue tracker="bnc" id="1237240">VUL-0: CVE-2025-1372: elfutils: buffer overflow in function dump_data_section/print_string_section of the file readelf.c of the component eu-readelf</issue>
  <issue tracker="bnc" id="1237236">VUL-0: CVE-2025-1352: elfutils: SEGV (illegal read access) in function __libdw_thread_tail in the library libdw_alloc.c of the component eu-readelf</issue>
  <packager>matz2</packager>
  <rating>moderate</rating>
  <category>recommended</category>
  <summary>Recommended update for elfutils</summary>
  <description>This update for elfutils fixes the following issues:

- Fixing build/testsuite for more recent glibc and kernels.
- Fixing denial of service and general buffer overflow errors
  (bsc#1237236, bsc#1237240, bsc#1237241, bsc#1237242).
- Fixing testsuite race conditions in run-debuginfod-find.sh.</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places