Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Libdwarf
(Libdwarf_project)| Repositories | https://github.com/tomhughes/libdwarf |
| #Vulnerabilities | 44 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2017-02-17 | CVE-2016-5042 | The dwarf_get_aranges_list function in libdwarf before 20160923 allows remote attackers to cause a denial of service (infinite loop and crash) via a crafted DWARF section. | Libdwarf | 7.5 | ||
| 2017-02-17 | CVE-2016-5043 | The dwarf_dealloc function in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted DWARF section. | Libdwarf | 7.5 | ||
| 2017-02-17 | CVE-2016-5044 | The WRITE_UNALIGNED function in dwarf_elf_access.c in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds write and crash) via a crafted DWARF section. | Libdwarf | 7.5 | ||
| 2017-02-17 | CVE-2016-7510 | The read_line_table_program function in dwarf_line_table_reader_common.c in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read) via crafted input. | Libdwarf | 6.5 | ||
| 2017-02-17 | CVE-2016-7511 | Integer overflow in the dwarf_die_deliv.c in libdwarf 20160613 allows remote attackers to cause a denial of service (crash) via a crafted file. | Libdwarf | 5.5 | ||
| 2017-02-24 | CVE-2016-5027 | dwarf_form.c in libdwarf 20160115 allows remote attackers to cause a denial of service (crash) via a crafted elf file. | Libdwarf | 5.5 | ||
| 2017-02-28 | CVE-2016-9558 | (1) libdwarf/dwarf_leb.c and (2) dwarfdump/print_frames.c in libdwarf before 20161124 allow remote attackers to have unspecified impact via a crafted bit pattern in a signed leb number, aka a "negation overflow." | Libdwarf | 9.8 | ||
| 2017-03-23 | CVE-2016-9275 | Heap-based buffer overflow in the _dwarf_skim_forms function in libdwarf/dwarf_macro5.c in Libdwarf before 20161124 allows remote attackers to cause a denial of service (out-of-bounds read). | Libdwarf | 7.5 | ||
| 2017-03-23 | CVE-2016-9276 | The dwarf_get_aranges_list function in dwarf_arrange.c in Libdwarf before 20161124 allows remote attackers to cause a denial of service (out-of-bounds read). | Libdwarf | 7.5 | ||
| 2017-04-10 | CVE-2016-5041 | dwarf_macro5.c in libdwarf before 20160923 allows remote attackers to cause a denial of service (NULL pointer dereference) via a debugging information entry using DWARF5 and without a DW_AT_name. | Libdwarf | 7.5 |