Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 526
Alerts This Week
Warning Icon 1 526

Fedora 25: 2016-9b8717537a Critical: Libdwarf Buffer Overflow

fedora
Calendar Grey October 9, 2016
Dist Fedora Esm H88
Enhancing libdwarf on Fedora 25 resolves significant vulnerabilities such as buffer overruns and memory concerns.
Update to 20161001 upstream release

Summary

Library to access the DWARF debugging file format which supports

source level debugging of a number of procedural languages, such as C, C++,

and Fortran. Please see https://dwarfstd.org/ for DWARF specification.

Update Information:

Update to 20161001 upstream release

Change Log

References


[ 1 ] Bug #1378719 - CVE-2016-7510 libdwarf: Out-of-bounds read in read_line_table_program [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1378719 [ 2 ] Bug #1377107 - libdwarf Integer Overflow https://bugzilla.redhat.com/show_bug.cgi?id=1377107 [ 3 ] Bug #1376362 - CVE-2016-7410 libdwarf: Heap buffer overflow in _dwarf_read_loc_section [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1376362 [ 4 ] Bug #1379019 - libdwarf-20160923 is available https://bugzilla.redhat.com/show_bug.cgi?id=1379019 [ 5 ] Bug #1380556 - libdwarf-20160929 is available https://bugzilla.redhat.com/show_bug.cgi?id=1380556 [ 6 ] Bug #1381052 - libdwarf-20161001 is available https://bugzilla.redhat.com/show_bug.cgi?id=1381052

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update libdwarf' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
critical
Lowest
Low
Medium
High
Critical

Name: libdwarf
Product: Fedora 25
Version: 20161001
Release: 1.fc25
Summary: Library to access the DWARF Debugging file format

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.