The createfullestfile_path function in libdwarf before 20160923 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted dwarf file.
{ "urgency": "not yet assigned" }