» SA-2006-0002 buffer overflow in GNU gdb

Buffer overflow in the (1) DWARF (dwarfread.c) and DWARF2 (dwarf2read.c) debugging code in GNU Debugger (GDB) 6.5 allows user-assisted attackers, or restricted users, to execute arbitrary code via a crafted file with a location block (DW_FORM_block) that contains a large number of operations.

Temporarily just giving the CVE summary: CVE-2006-4146

tags: findings - debugging - trusting-trust

this page does not necessarily reflect the views of my employer or anyone i'm associated with.