CVE-2025-1376

Source
https://cve.org/CVERecord?id=CVE-2025-1376
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-1376.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-1376
Downstream
Related
Published
2025-02-17T04:31:08.264Z
Modified
2026-07-08T07:57:55.974660286Z
Severity
  • 2.0 (Low) CVSS_V4 - CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N CVSS Calculator
Summary
GNU elfutils eu-strip elf_strptr.c elf_strptr denial of service
Details

A vulnerability classified as problematic was found in GNU elfutils 0.192. This vulnerability affects the function elfstrptr in the library /libelf/elfstrptr.c of the component eu-strip. The manipulation leads to denial of service. It is possible to launch the attack on the local host. The complexity of an attack is rather high. The exploitation appears to be difficult. The exploit has been disclosed to the public and may be used. The name of the patch is b16f441cca0a4841050e3215a9f120a6d8aea918. It is recommended to apply a patch to fix this issue.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/1xxx/CVE-2025-1376.json",
    "cna_assigner": "VulDB",
    "cwe_ids": [
        "CWE-404"
    ],
    "unresolved_ranges": [
        {
            "source": "AFFECTED_FIELD",
            "extracted_events": [
                {
                    "introduced": "0.192"
                },
                {
                    "last_affected": "0.192"
                }
            ]
        }
    ]
}
References

Affected packages

Git / sourceware.org/git/elfutils.git

Affected ranges

Type
GIT
Repo
https://sourceware.org/git/elfutils.git
Events
Introduced
0f3b436b7e4fc4d310be79a62e40a115fdc482d0
Last affected
0f3b436b7e4fc4d310be79a62e40a115fdc482d0
Database specific
{
    "cpe": "cpe:2.3:a:elfutils_project:elfutils:0.192:*:*:*:*:*:*:*",
    "extracted_events": [
        {
            "introduced": "0.192"
        },
        {
            "last_affected": "0.192"
        }
    ],
    "source": "CPE_STRING"
}

Affected versions

0.*
0.192
elfutils-0.*
elfutils-0.192

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-1376.json"