CVE-2025-1352: GNU elfutils eu-readelf libdw_alloc.c __libdw_thread_tail memory corruption
First published: Sun Feb 16 2025(Updated: )
A vulnerability has been found in GNU elfutils 0.192 and classified as critical. This vulnerability affects the function __libdw_thread_tail in the library libdw_alloc.c of the component eu-readelf. The manipulation of the argument w leads to memory corruption. The attack can be initiated remotely. The complexity of an attack is rather high. The exploitation appears to be difficult. The exploit has been disclosed to the public and may be used. The name of the patch is 2636426a091bd6c6f7f02e49ab20d4cdc6bfc753. It is recommended to apply a patch to fix this issue.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| GNU elfutils |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2025-1352?
The severity of CVE-2025-1352 is classified as critical.
What software is affected by CVE-2025-1352?
CVE-2025-1352 affects GNU elfutils version 0.192.
How does CVE-2025-1352 lead to exploitation?
CVE-2025-1352 allows for memory corruption through manipulation of the argument w in the function __libdw_thread_tail.
How do I fix CVE-2025-1352?
To fix CVE-2025-1352, update your GNU elfutils to a patched version that addresses this vulnerability.
What components are affected by CVE-2025-1352?
The component eu-readelf in GNU elfutils is affected by CVE-2025-1352.
- collector/mitre-cve
- source/MITRE
- agent/title
- agent/weakness
- agent/references
- agent/type
- agent/first-publish-date
- agent/description
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- agent/severity
- agent/author
- agent/last-modified-date
- agent/source
- agent/tags
- agent/event
- vendor/gnu
- canonical/gnu elfutils