oss-sec mailing list archives
Heap-based buffer overflow in libdw/elfutils (CVE-2014-0172)
From: Florian Weimer <fweimer () redhat com>
Date: Wed, 09 Apr 2014 10:51:46 +0200
The compressed debug information support in libdw does not handle malformed compressed debug sections properly. When computing the size of a memory region, integer wraparound is not taken into account, resulting in a heap allocation that is smaller than expected and which is subsequently filled with arbitrary decompressed data:
<https://bugzilla.redhat.com/show_bug.cgi?id=1085663> We have assigned CVE-2014-0172 to this issue. -- Florian Weimer / Red Hat Product Security Team
Current thread:
- Heap-based buffer overflow in libdw/elfutils (CVE-2014-0172) Florian Weimer (Apr 09)