An issue, also known as DW201703-006, exists in libdwarf 2017-03-21. A heap-based buffer over-read in dwarf_formsdata() is due to a failure to check a pointer for being in bounds (in a few places in this function) and a failure in a check in dwarf_attr_list().
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
libdwarf project libdwarf 2017-03-21 |