On 12/16/15 18:44, Guido Günther wrote:
>
> It doesn't segfault but I added this note to dla-needed (so I remember
> why I think it's affected):
>
> dwarfutils
> NOTE: exploit does not crash dwarfutils but _dwarf_get_abbrev_for_code
> lacks the check
>
> I do think it would be good to add the
On 12/11/15 11:21, Guido Günther wrote:
> the Debian LTS team would like to fix the security issues which are
> currently open in the Squeeze version of dwarfutils:
> https://security-tracker.debian.org/tracker/CVE-2015-8538
>
> Would you like to take care of this yourself?
According to the RHE
