A vulnerability was found in libdwarf. In dwarf_get_aranges_list() an invalid count will iterate, reading from memory addresses that increase till it all fails. References: http://seclists.org/oss-sec/2016/q2/393 External references: https://www.prevanders.net/dwarfbug.html Upstream fix: https://sourceforge.net/p/libdwarf/code/ci/98a3da1e8237fe0d45b67ef77f3fa5ed9ff0215f
Already fixed in Fedora.