Ubuntu CVE Tracker
Home
Main
Universe
Partner
CVE-2016-2091
Priority
Medium
Description
The dwarf_read_cie_fde_prefix function in dwarf_frame2.c in libdwarf
20151114 allows attackers to cause a denial of service (out-of-bounds read)
via a crafted ELF object file.
References
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2091
http://www.openwall.com/lists/oss-security/2016/01/19/3
Notes
Package
Source:
dwarfutils
(
LP
Ubuntu
Debian
)
Upstream:
released
(20160507-1)
Ubuntu 14.04 ESM:
DNE
(trusty was released [20120410-2+deb7u2build0.14.04.1])
Ubuntu 20.04 FIPS Compliant:
not-affected
Patches:
More Information
Mitre
NVD
Launchpad
Debian
Updated
: 2022-04-13 12:13:12 UTC (commit
f411bd370d482ef4385c4e751d121a4055fbc009
)