QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2019-7149

Back to search

CVE-2019-7149

Published: Jan 29, 2019

Modified: Aug 4, 2024

PUBLISHED

Description

A heap-based buffer over-read was discovered in the function read_srclines in dwarf_getsrclines.c in libdw in elfutils 0.175. A crafted input can cause segmentation faults, leading to denial-of-service, as demonstrated by eu-nm.

VendorProductVersions

n/a

n/a

affected
n/a

References

USN-4012-1
vendor-advisory
x_refsource_UBUNTU
RHSA-2019:2197
vendor-advisory
x_refsource_REDHAT
RHSA-2019:3575
vendor-advisory
x_refsource_REDHAT

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now