The _dwarf_get_abbrev_for_code function in dwarf_util.c in libdwarf 20161001 and previous versions allows remote malicious users to cause a denial of service (out-of-bounds read) by calling the dwarfdump command on a crafted file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
libdwarf project libdwarf |