Bug 1005046 (CVE-2016-8681) - VUL-1: CVE-2016-8681: libdwarf: heap-based buffer overflow in _dwarf_get_size_of_val (dwarf_util.c)
Summary: VUL-1: CVE-2016-8681: libdwarf: heap-based buffer overflow in _dwarf_get_size...
Status: RESOLVED FIXED
Alias: CVE-2016-8681
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents (show other bugs)
Version: unspecified
Hardware: Other Other
: P4 - Low : Minor
Target Milestone: ---
Assignee: Michael Matz
QA Contact: Security Team bot
URL: https://smash.suse.de/issue/173650/
Whiteboard: CVSSv2:SUSE:CVE-2016-8681:5.1:(AV:N/A...
Keywords:
Depends on:
Blocks:
 
Reported: 2016-10-17 09:39 UTC by Johannes Segitz
Modified: 2024-05-20 13:19 UTC (History)
2 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Johannes Segitz 2016-10-17 09:39:21 UTC 
CVE-2016-8681. Reported by Agostino Sarubbo. This has the same fix as CVE-2016-8679 but seems distinct.

https://blogs.gentoo.org/ago/2016/10/06/libdwarf-heap-based-buffer-overflow-in-_dwarf_get_abbrev_for_code-dwarf_util-c-2/

AddressSanitizer: heap-buffer-overflow ... READ of size 1
libdwarf/dwarf_util.c:590:9 in _dwarf_get_abbrev_for_code

Commit fix: https://sourceforge.net/p/libdwarf/code/ci/2d14a7792889e33bc542c28d0f3792964c46214f/#diff-13 and then https://sourceforge.net/p/libdwarf/code/ci/efe48cad0693d6994d9a7b561e1c3833b073a624/#diff-2 (because of a mistake)

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-8681
http://seclists.org/oss-sec/2016/q4/146
http://seclists.org/oss-sec/2016/q4/144
Comment 1 Swamp Workflow Management 2016-10-17 22:01:49 UTC 
bugbot adjusting priority