Double Free
CVE-2022-39170
Summary
The package "libdwarf" prior to 0.4.2, has a double free in "_dwarf_exec_frame_instr" in "dwarf_frame.c". NOTE: The affected versions of this package are not available in a package manager we support.
- LOW
- NETWORK
- HIGH
- UNCHANGED
- REQUIRED
- NONE
- HIGH
- HIGH
CWE-415 - Double Free
The product calls free() twice on the same memory address, potentially leading to modification of unexpected memory locations.
Advisory Timeline
- Published
