OSV-2026-785

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/libdwarf/OSV-2026-785.yaml
JSON Data
https://api.test.osv.dev/v1/vulns/OSV-2026-785
Published
2026-05-21T00:11:24.087181Z
Modified
2026-05-26T14:15:05.057556121Z
Summary
Heap-double-free in _dwarf_load_elf_symtab_symbols
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=514753154

Crash type: Heap-double-free
Crash state:
_dwarf_load_elf_symtab_symbols
_dwarf_elf_nlsetup
dwarf_init_path_dl_a
References

Affected packages

OSS-Fuzz / libdwarf

Package

Name
libdwarf
Purl
pkg:generic/libdwarf

Affected ranges

Type
GIT
Repo
https://github.com/davea42/libdwarf-code
Events
Introduced
b77072b86835e5e2d0f7cece727c9251cec6c701
Fixed
f49716564b3a263ce81c5319fecea4c9319e178f
Fixed
1ac98981519d789d11cd80997c0d431975765db0

Ecosystem specific 

{
    "severity": "HIGH"
}

Database specific

introduced_range 
"4219b9d3c386f75ca5f47ade03def1a157057e49:dd3ca3226b2c48ff8588d02a74a90cdabea4e91c"
fixed_range 
"4b3cf93cc5819fbbef6d81812a08bae704c09aad:1ac98981519d789d11cd80997c0d431975765db0"
source 
"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/libdwarf/OSV-2026-785.yaml"