A heap-based buffer over-read was discovered in the function read_srclines in dwarf_getsrclines.c in libdw in elfutils 0.175. A crafted input can cause segmentation faults, leading to denial-of-service, as demonstrated by eu-nm.
CPE | Name | Operator | Version |
---|---|---|---|
debian_linux | eq | 8.0 | |
elfutils | eq | 0.175 |