A vulnerability was found in elfutils 0.174. An attempted excessive memory allocation was discovered in the function read_long_names in elf_begin.c in libelf. Remote attackers could leverage this vulnerability to cause a denial-of-service via crafted elf input, which leads to an out-of-memory exception. References: https://sourceware.org/bugzilla/show_bug.cgi?id=24085
Upstream patch: https://sourceware.org/git/?p=elfutils.git;a=commit;h=e32380ecefbb23448541367283d3b94930762986
I'm closing this as NOTABUG and I have requested to reject this CVE to MITRE, because the issue is just caused by ASAN, which tries to detect big allocations.