The vulnerability of the libdw library, a set of utilities for processing ELF objects, arises from reading data beyond the permissible buffer size. This allows an attacker to cause a service failure.

The vulnerability of the libdw library, which contains utilities for processing ELF objects, is related to incorrect checks for the end of the attribute list in dwarfgetabbrev.c and dwarfhasattr.c. Exploiting this vulnerability could allow an attacker to cause service failures remotely...

USN-3670-1: elfutils vulnerabilities

Agostino Sarubbo discovered that elfutils incorrectly handled certain malformed ELF files. If a user or automated system were tricked into processing a specially crafted ELF file, elfutils could be made to crash or consume resources, resulting in a denial of service...

elfutils: Heap-based buffer overflow

Background Elfutils provides a library and utilities to access, modify and analyse ELF objects. Description An integer overflow, in the checksection function of dwarfbeginelf.c, in the libdw library can lead to a heap-based buffer overflow. Impact A remote attacker could entice a user to open a...

DLA-388-1 dwarfutils - security update

Bulletin has no description...