0.003 Low
EPSS
Percentile
71.7%
A heap-based buffer over-read was discovered in the function read_srclines in dwarf_getsrclines.c in libdw in elfutils 0.175. A crafted input can cause segmentation faults, leading to denial-of-service, as demonstrated by eu-nm.
bugzilla.redhat.com/show_bug.cgi?id=1671443
nvd.nist.gov/vuln/detail/CVE-2019-7149
www.cve.org/CVERecord?id=CVE-2019-7149