CVE-2006-4146 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2006-4146
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-4146

Description: Buffer overflow in the (1) DWARF (dwarfread.c) and (2) DWARF2 (dwarf2read.c) debugging code in GNU Debugger (GDB) 6.5 allows user-assisted attackers, or restricted users, to execute arbitrary code via a crafted file with a location block (DW_FORM_block) that contains a large number of operations.

CVE Status: Candidate

References: UBUNTU http://www.ubuntu.com/usn/usn-356-1 ST 1017138 SGI SAID Secunia Advisory: SA22662 Secunia Advisory: SA22205 Secunia Advisory: SA21713 Secunia Advisory: SA25098 Secunia Advisory: SA25632 Secunia Advisory: SA25894 Secunia Advisory: SA25934 Secunia Advisory: SA26909 Secunia Advisory: SA27706 REDHAT http://www.redhat.com/support/errata/RHSA-2007-0469.html http://www.redhat.com/support/errata/RHSA-2007-0229.html OSVDB 28318 GENTOO http://security.gentoo.org/glsa/glsa-200711-23.xml FULLDISC http://lists.grok.org.uk/pipermail/full-disclosure/2007-September/065902.html CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2007-253.htm http://docs.info.apple.com/article.html?artnum=304669 BID 19802 APPLE http://lists.apple.com/archives/security-announce/2006/Oct/msg00000.html

Return to the previous page.