19 matches found
DEBIAN-CVE-2025-69648
GNU Binutils thru 2.45.1 readelf contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF .debugrnglists data. A logic flaw in the DWARF parsing path causes readelf to repeatedly print the same warning message without making forward progress, resulting in a...
CVE-2025-69648
GNU Binutils thru 2.45.1 readelf contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF .debugrnglists data. A logic flaw in the DWARF parsing path causes readelf to repeatedly print the same warning message without making forward progress, resulting in a...
CVE-2025-69647
GNU Binutils thru 2.45.1 readelf contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF loclists data. A logic flaw in the DWARF parsing code can cause readelf to repeatedly print the same table output without making forward progress, resulting in an...
CVE-2025-69648
GNU Binutils thru 2.45.1 readelf contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF .debugrnglists data. A logic flaw in the DWARF parsing path causes readelf to repeatedly print the same warning message without making forward progress, resulting in a...
CVE-2025-69652
A flaw was found in binutils. Processing a specially crafted ELF binary file containing malformed DWARF abbrev or debug information with the readelf program using the -w abbrev command line option can trigger an abort, causing a crash and resulting in a denial of service. Mitigation To mitigate...
CVE-2025-69652
GNU Binutils thru 2.46 readelf contains a vulnerability that leads to an abort SIGABRT when processing a crafted ELF binary with malformed DWARF abbrev or debug information. Due to incomplete state cleanup in processdebuginfo, an invalid debuginfop state may propagate into DWARF attribute parsing...
DEBIAN-CVE-2025-69645
Binutils objdump contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF debug information. A logic error in the handling of DWARF compilation units can result in an invalid offsetsize value being used inside bytegetlittleendian, leading to an abort SIGABR...
CVE-2025-69652
GNU Binutils thru 2.46 readelf contains a vulnerability that leads to an abort SIGABRT when processing a crafted ELF binary with malformed DWARF abbrev or debug information. Due to incomplete state cleanup in processdebuginfo, an invalid debuginfop state may propagate into DWARF attribute parsing...
Reachable Assertion
Overview Affected versions of this package are vulnerable to Reachable Assertion in the readelf process when parsing a specially crafted ELF binary containing malformed DWARF abbrev or debug information. An attacker can cause the application to abort and crash by convincing a user to process a...
CVE-2025-69652
CVE-2025-69652 concerns GNU Binutils up to 2.46, specifically the readelf component. A crafted ELF binary with malformed DWARF abbrev or debug information can trigger an abort (SIGABRT) due to incomplete state cleanup in process_debug_info(), allowing an invalid debug_info_p state to propagate in...
PT-2026-23741
Name of the Vulnerable Software and Affected Versions GNU Binutils versions through 2.46 Description The software contains a flaw that can cause it to stop working unexpectedly SIGABRT when it processes a specially crafted ELF binary file with incorrectly formatted DWARF abbrev or debug...
EUVD-2016-10286
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2016-9480
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libdwarf 2016-10-21 allows context-dependent attackers to obtain sensitive information or cause a denial of service by using the malformed dwarf file approach,...
SUSE CVE-2016-9480
libdwarf 2016-10-21 allows context-dependent attackers to obtain sensitive information or cause a denial of service by using the "malformed dwarf file" approach, related to a "Heap Buffer Over-read" issue affecting the dwarfutil.c component, aka DW201611-006...
MGASA-2021-0160 Updated radare2 packages fix security vulnerabilities
radare2 4.5.0 misparses DWARF information in executable files, causing a segmentation fault in parsetypedef in typedwarf.c via a malformed DWATname in the .debuginfo section CVE-2020-16269. radare2 4.5.0 misparses signature information in PE files, causing a segmentation fault in...
libdwarf Heap Buffer Overflow Vulnerability
libdwarf is a set of tools for reading and writing DWARF2 debugging information. A heap-based buffer overflow vulnerability exists in libdwarf. An attacker could exploit this vulnerability by using a malformed dwarf file to obtain sensitive information or cause a denial of service...
CVE-2016-9480
libdwarf 2016-10-21 allows context-dependent attackers to obtain sensitive information or cause a denial of service by using the "malformed dwarf file" approach, related to a "Heap Buffer Over-read" issue affecting the dwarfutil.c component, aka DW201611-006...
UBUNTU-CVE-2016-9480
libdwarf 2016-10-21 allows context-dependent attackers to obtain sensitive information or cause a denial of service by using the "malformed dwarf file" approach, related to a "Heap Buffer Over-read" issue affecting the dwarfutil.c component, aka DW201611-006...
CVE-2016-9480
libdwarf 2016-10-21 allows context-dependent attackers to obtain sensitive information or cause a denial of service by using the "malformed dwarf file" approach, related to a "Heap Buffer Over-read" issue affecting the dwarfutil.c component, aka DW201611-006...