CVE-2021-33294 – Ubuntu Security Notice USN-6322-1

https://notcve.org/view.php?id=CVE-2021-33294

18 Jul 2023 — In elfutils 0.183, an infinite loop was found in the function handle_symtab in readelf.c .Which allows attackers to cause a denial of service (infinite loop) via crafted file. It was discovered that elfutils incorrectly handled certain malformed files. If a user or automated system were tricked into processing a specially crafted file, elfutils could be made to crash or consume resources, resulting in a denial of service. This issue only affected Ubuntu 14.04 LTS. It was discovered that elfutils incorrectly... • https://sourceware.org/bugzilla/show_bug.cgi?id=27501 • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •