Heap-based buffer overflow in libdw/elfutils (CVE-2014-0172)

[Florian Weimer <fweimer () redhat com>]

The compressed debug information support in libdw does not handle 
malformed compressed debug sections properly.  When computing the size 
of a memory region, integer wraparound is not taken into account, 
resulting in a heap allocation that is smaller than expected and which 
is subsequently filled with arbitrary decompressed data:

  <https://bugzilla.redhat.com/show_bug.cgi?id=1085663>

We have assigned CVE-2014-0172 to this issue.

--
Florian Weimer / Red Hat Product Security Team