An infinite loop may be triggered in display_debug_abbrev() function in binutils/dwarf.c while opening a crafted ELF, which may lead to denial of service by a local attacker.
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38128
launchpad.net/bugs/cve/CVE-2022-38128
nvd.nist.gov/vuln/detail/CVE-2022-38128
security-tracker.debian.org/tracker/CVE-2022-38128