2 matches found
ALPINE-CVE-2018-16403
libdw in elfutils 0.173 checks the end of the attributes list incorrectly in dwarfgetabbrev in dwarfgetabbrev.c and dwarfhasattr in dwarfhasattr.c, leading to a heap-based buffer over-read and an application crash...
PT-2018-3617 · Red Hat +5 · Elfutils +6
Name of the Vulnerable Software and Affected Versions: elfutils version 0.173 Description: The issue is related to incorrect checking of the end of the attributes list in the libdw library of the elfutils package, specifically in the dwarf getabbrev function in dwarf getabbrev.c and the dwarf...