Divide By Zero

CVE-2018-18521

Medium

4.3/10

Summary

Divide-by-zero vulnerabilities in the function arlib_add_symbols() in arlib.c in elfutils 0.174 allow remote attackers to cause a denial of service (application crash) with a crafted ELF file, as demonstrated by eu-ranlib, because a zero sh_entsize is mishandled.

Access Complexity: MEDIUM
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: NONE
Confidentiality Impact: NONE
Availability Impact: PARTIAL

CWE-369 - Divide By Zero

The product divides a value by zero.

References

Advisory Timeline

Published Oct 19, 2018

Divide By Zero

CVE-2018-18521

Summary

CWE-369 - Divide By Zero

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS