CVE-2016-5039 in Ubuntu

CVE-2016-5039

Priority

Description

The get_attr_value function in libdwarf before 20160923 allows remote
attackers to cause a denial of service (out-of-bounds read) via a crafted
object with all-bits on.

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5039

Notes

Package

Source: dwarfutils (LP Ubuntu Debian)

Upstream:	released (20160507-1)
Ubuntu 14.04 ESM:	DNE (trusty was released [20120410-2+deb7u2build0.14.04.1])
Ubuntu 20.04 FIPS Compliant:	not-affected (20160507-1)

Patches:

Upstream:

https://sourceforge.net/p/libdwarf/code/ci/eb1472afac95031d0c9dd8c11d527b865fe7deb8/

More Information

Mitre
NVD
Launchpad
Debian

Updated: 2022-04-13 12:22:50 UTC (commit f411bd370d482ef4385c4e751d121a4055fbc009)