Bugzilla – Bug 1005050
VUL-1: CVE-2016-8680: libdwarf: heap-based buffer overflow in _dwarf_get_abbrev_for_code (dwarf_util.c)
Last modified: 2024-05-20 13:17:55 UTC
CVE-2016-8680. Reported by Agostino Sarubbo https://blogs.gentoo.org/ago/2016/10/04/libdwarf-heap-based-buffer-overflow-in-_dwarf_get_abbrev_for_code-dwarf_util-c/ AddressSanitizer: heap-buffer-overflow ... READ of size 1 libdwarf/dwarf_util.c:624:43 in _dwarf_get_abbrev_for_code Fix: https://sourceforge.net/p/libdwarf/code/ci/268c1f18d1d28612af3b72d7c670076b1b88e51c/tree/libdwarf/dwarf_util.c?diff=0b28b923c3bd9827d1d904feed2abadde4fa5de2 References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-8680 http://seclists.org/oss-sec/2016/q4/145
bugbot adjusting priority