Description: libdwarf is a library to consume and produce DWARF debug information. A fuzz on an updated version revealed a buffer overflow. The complete ASan output: # dwarfdump $FILE ==27460==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x60600000eff4 at pc 0x00000047349b bp 0x7ffd9feadaf0 … Continue reading libdwarf: heap-based buffer overflow in dwarf_get_aranges_list (dwarf_arange.c)