CVE-2025-1376

Name of the Vulnerable Software and Affected Versions: GNU elfutils version 0.192

Description: A vulnerability was found in GNU elfutils, affecting the function elf strptr in the library /libelf/elf strptr.c of the component eu-strip. The manipulation leads to denial of service. It is possible to launch the attack on the local host. The complexity of an attack is rather high, and the exploitation appears to be difficult. The exploit has been disclosed to the public and may be used.

Recommendations: To fix this issue, it is recommended to apply a patch, specifically the patch with the name b16f441cca0a4841050e3215a9f120a6d8aea918. As a temporary workaround, consider disabling the elf strptr function in the /libelf/elf strptr.c library until a patch is applied. Restrict access to the eu-strip component to minimize the risk of exploitation.