Back to bug 2102019
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| TEJ RATHI | 2022-06-29 07:15:59 UTC | CC | caswilli, fche, kaycoth | |
| TEJ RATHI | 2022-06-29 07:16:43 UTC | Blocks | 2100818 | |
| TEJ RATHI | 2022-06-29 07:20:13 UTC | Depends On | 2102021 | |
| Tom Hughes | 2022-06-29 07:21:52 UTC | CC | tom | |
| TEJ RATHI | 2022-07-05 12:06:42 UTC | Fixed In Version | libdwarf 0.4.1 | |
| TEJ RATHI | 2022-07-05 12:19:42 UTC | Doc Text | A buffer-overflow vulnerability was found in libdwarf's dwarf_global_formref_b() function in dwarf_form.c. A carefully crafted .debug_info would cause libdwarf to read outside of a buffer containing a Dwarf_Sig8 symbolic reference. That could cause a segmentation violation or other major error, terminating the calling application and resulting in a denial of service. | |
| TEJ RATHI | 2022-07-05 12:21:20 UTC | Doc Text | A buffer-overflow vulnerability was found in libdwarf's dwarf_global_formref_b() function in dwarf_form.c. A carefully crafted .debug_info would cause libdwarf to read outside of a buffer containing a Dwarf_Sig8 symbolic reference. That could cause a segmentation violation or other major error, terminating the calling application and resulting in a denial of service. | A buffer-overflow vulnerability was found in libdwarf's dwarf_global_formref_b() function in dwarf_form.c. A carefully crafted `.debug_info` would cause libdwarf to read outside of a buffer containing a Dwarf_Sig8 symbolic reference. That could cause a segmentation violation or other major error, terminating the calling application and resulting in a denial of service. |
| RaTasha Tillery-Smith | 2022-07-05 13:29:50 UTC | Doc Text | A buffer-overflow vulnerability was found in libdwarf's dwarf_global_formref_b() function in dwarf_form.c. A carefully crafted `.debug_info` would cause libdwarf to read outside of a buffer containing a Dwarf_Sig8 symbolic reference. That could cause a segmentation violation or other major error, terminating the calling application and resulting in a denial of service. | A buffer-overflow vulnerability was found in libdwarf's dwarf_global_formref_b() function in dwarf_form.c. A carefully crafted `.debug_info` causes libdwarf to read outside a buffer containing a Dwarf_Sig8 symbolic reference. This issue can cause a segmentation violation or other major error, terminating the calling application and resulting in a denial of service. |
| TEJ RATHI | 2022-08-12 08:55:00 UTC | Priority | low | medium |
| Severity | low | medium | ||
| Red Hat Bugzilla | 2023-07-07 08:34:05 UTC | Assignee | security-response-team | nobody |
Back to bug 2102019