The dwarf_read_cie_fde_prefix function in dwarf_frame2.c in libdwarf 20151114 allows attackers to cause a denial of service (out-of-bounds read) via a crafted ELF object file.
References
Link | Resource |
---|---|
http://www.openwall.com/lists/oss-security/2016/01/19/3 | Exploit Mailing List |
http://www.openwall.com/lists/oss-security/2016/01/28/8 | Mailing List |
Configurations
History
No history.
Information
Published : 2016-02-08 19:59
Updated : 2024-02-28 15:21
NVD link : CVE-2016-2091
Mitre link : CVE-2016-2091
CVE.ORG link : CVE-2016-2091
JSON object : View
Products Affected
libdwarf_project
- libdwarf
CWE
CWE-125
Out-of-bounds Read