Bugzilla – Bug 1012823
VUL-1: CVE-2016-9480: libdwarf: heap buffer overflow in dwarf_util.c
Last modified: 2018-02-19 15:27:47 UTC
libdwarf allows context-dependent attackers to obtain sensitive information or cause a denial of service by using the "malformed dwarf file" approach, related to a "Heap Buffer Over-read" issue affecting the dwarf_util.c component.
Upstream bug (currently private):
bugbot adjusting priority
do you really want me to only fix this bug out of the 20 pending CVEs for libdwarf? also this is not really used in any security relevant context in leap, why bother?
This is an autogenerated message for OBS integration:
This bug (1012823) was mentioned in
https://build.opensuse.org/request/show/448518 Factory / libdwarf
Fixed in Factory, not fixing in Leap.