https://sourceware.org/bugzilla/show_bug.cgi?id=31058
--- Comment #2 from Mark Wielaard <mark at klomp dot org> --- Note that this issue was discussed when rediscovered again on January 9 by someone else running a fuzzer. The conclusion then was that this was a normal bug and not a security issue. Crashes in the standalone utilities on untrustworthy inputs are not normally seen as security issues, because they don't cause privilege escalation. See our SECURITY policy at: https://sourceware.org/cgit/elfutils/tree/SECURITY -- You are receiving this mail because: You are on the CC list for the bug.