CVE-2025-1372 | GNU elfutils 0.192 eu-readelf readelf.c dump_data_section/print_string_section z/x buffer overflow (Bug 32656)

Posted by Angelo Barbosa | Feb 16, 2025 | CVE

A vulnerability was found in GNU elfutils 0.192. It has been declared as critical. Affected by this vulnerability is the function dump_data_section/print_string_section of the file readelf.c of the component eu-readelf. The manipulation of the argument z/x leads to buffer overflow.

This vulnerability is known as CVE-2025-1372. An attack has to be approached locally. Furthermore, there is an exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2025-1372 | GNU elfutils 0.192 eu-readelf readelf.c dump_data_section/print_string_section z/x buffer overflow (Bug 32656)

Related Posts

CVE-2024-11343 | Progress Telerik Document Processing Libraries 2024.4.1106 path traversal

CVE-2022-4541 | Visitors Plugin up to 1.0 on WordPress HTTP Header cross site scripting

CVE-2024-3665 | Rank Math SEO with AI SEO Tools Plugin up to 1.0.216 on WordPress titleWrapper cross site scripting

CVE-2024-7294 | Progress Telerik Report Server up to 10.2.24.709 HTTP resource consumption