CVE-2025-1376: 
NixOS vulnerability analysis and mitigation

A vulnerability was discovered in GNU elfutils version 0.192, specifically affecting the elfstrptr function in the library /libelf/elfstrptr.c of the eu-strip component. The issue was discovered on February 10, 2025, and was fixed on February 13, 2025. The vulnerability could lead to a segmentation fault when processing specially crafted input files with the --reloc-debug-sections-only option (Sourceware Bugzilla).

The vulnerability occurs in the validatestr function when elfstrptr is called on a section with shsize already set but without any data. This could happen when a new section was created with elfnewscn but no data had been added yet. The issue manifests as an illegal read access at address 0x00000e000007, triggering a segmentation fault. The vulnerability has been assigned a CVSS v3.1 score of 2.5 (Low) with the vector string CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L (NVD).

The vulnerability leads to a denial of service condition through a segmentation fault. The impact is considered low as it requires local access and high attack complexity. According to the elfutils maintainers, this is not considered a security issue as the tools are typically run in short-lived, local, interactive, development contexts rather than remotely in production (Sourceware Bugzilla).

The issue has been fixed in a patch (commit b16f441cca0a4841050e3215a9f120a6d8aea918) which adds a check to verify that strscn->rawdatabase is not NULL before accessing the data. Users are recommended to update to the patched version. Additionally, a previous patch that checks for ETREL file types before processing helps prevent this issue in some distributions (Sourceware Bugzilla).