CVE-2016-2050

Name of the Vulnerable Software and Affected Versions libdwarf version 20151114

Description The issue allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted elf file. This is due to a problem in the get abbrev array info function.

Recommendations For libdwarf version 20151114, consider disabling the get abbrev array info function as a temporary workaround until a patch is available. Restrict access to crafted elf files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.