When analyzing the ELF file format, there is an out-of-bounds read bug in elfspirit, which can lead to application crashes or information leakage. By constructing a special format ELF file(name and offset of section header table), the information of any address can be leaked.
Impact
Information leakage & Denial of service.
Patches
c5b0f5a
References
Out-of-bounds read in elf parsing
For more information
If you have any questions or comments about this advisory:
When analyzing the ELF file format, there is an out-of-bounds read bug in elfspirit, which can lead to application crashes or information leakage. By constructing a special format ELF file(name and offset of section header table), the information of any address can be leaked.
Impact
Information leakage & Denial of service.
Patches
c5b0f5a
References
Out-of-bounds read in elf parsing
For more information
If you have any questions or comments about this advisory: