CVE-2019-14249
MEDIUMlibdwarf < 2019-07-05 - Denial of Service via Zero-Size ELF Section Group
Title source: llmDescription
dwarf_elf_load_headers.c in libdwarf before 2019-07-05 allows attackers to cause a denial of service (division by zero) via an ELF file with a zero-size section group (SHT_GROUP), as demonstrated by dwarfdump.
References (3)
Core 3
Core References
Patch, Third Party Advisory x_refsource_misc
https://sourceforge.net/p/libdwarf/code/merge-requests/4/
Patch, Third Party Advisory x_refsource_misc
https://sourceforge.net/p/libdwarf/code/ci/cb7198abde46c2ae29957ad460da6886eaa606ba/tree/libdwarf/dwarf_elf_load_headers.c?diff=99e77c3894877a1dd80b82808d8309eded4e5599
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/109380
Scores
CVSS v3
6.5
EPSS
0.0273
EPSS Percentile
84.1%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Details
CWE
CWE-369
Status
published
Products (1)
libdwarf_project/libdwarf
< 2019-07-05
Published
Jul 24, 2019
Tracked Since
Feb 18, 2026