CLSA-2025-1766501126

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2025-1766501126.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2025-1766501126

Upstream

CVE-2025-1371

CVE-2025-1376

CVE-2025-1377

Published

2025-12-23T14:45:29Z

Modified

2026-06-01T00:32:01.406524390Z

Summary

elfutils: Fix of 3 CVEs

Details

CVE-2025-1371: fix null pointer dereference in eu-readelf when processing corrupt ELF files with broken program headers
CVE-2025-1376: fix denial of service in libelf when processing sections without data (elfstrptr on sections with shsize set but no data)
CVE-2025-1377: fix denial of service in eu-strip when processing relocation tables with invalid symbol table sections (SHT_NOBITS)

References

https://errata.tuxcare.com/els_os/tuxcare9.6esu/CLSA-2025-1766501126.html

Affected packages

TuxCare:AlmaLinux:9.6

elfutils

Package

Name: elfutils
Purl: pkg:rpm/tuxcare/elfutils?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.192-6.el9_6.alma.1.tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2025-1766501126.json"

elfutils-debuginfod

Package

Name: elfutils-debuginfod
Purl: pkg:rpm/tuxcare/elfutils-debuginfod?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.192-6.el9_6.alma.1.tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2025-1766501126.json"

elfutils-debuginfod-client

Package

Name: elfutils-debuginfod-client
Purl: pkg:rpm/tuxcare/elfutils-debuginfod-client?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.192-6.el9_6.alma.1.tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2025-1766501126.json"

elfutils-debuginfod-client-devel

Package

Name: elfutils-debuginfod-client-devel
Purl: pkg:rpm/tuxcare/elfutils-debuginfod-client-devel?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.192-6.el9_6.alma.1.tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2025-1766501126.json"

elfutils-default-yama-scope

Package

Name: elfutils-default-yama-scope
Purl: pkg:rpm/tuxcare/elfutils-default-yama-scope?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.192-6.el9_6.alma.1.tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2025-1766501126.json"

elfutils-devel

Package

Name: elfutils-devel
Purl: pkg:rpm/tuxcare/elfutils-devel?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.192-6.el9_6.alma.1.tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2025-1766501126.json"

elfutils-libelf

Package

Name: elfutils-libelf
Purl: pkg:rpm/tuxcare/elfutils-libelf?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.192-6.el9_6.alma.1.tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2025-1766501126.json"

elfutils-libelf-devel

Package

Name: elfutils-libelf-devel
Purl: pkg:rpm/tuxcare/elfutils-libelf-devel?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.192-6.el9_6.alma.1.tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2025-1766501126.json"

elfutils-libs

Package

Name: elfutils-libs
Purl: pkg:rpm/tuxcare/elfutils-libs?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.192-6.el9_6.alma.1.tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2025-1766501126.json"