Security Advisory
CVE-2019-7149
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
A heap-based buffer over-read was discovered in the function read_srclines in dwarf_getsrclines.c in libdw in elfutils 0.175. A crafted input can cause segmentation faults, leading to denial-of-service, as demonstrated by eu-nm.