Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Libdwarf
(Libdwarf_project)| Repositories | https://github.com/tomhughes/libdwarf |
| #Vulnerabilities | 44 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2017-02-17 | CVE-2016-5037 | The _dwarf_load_section function in libdwarf before 20160923 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file. | Libdwarf | 6.5 | ||
| 2017-02-17 | CVE-2016-5038 | The dwarf_get_macro_startend_file function in dwarf_macro5.c in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted string offset for .debug_str. | Libdwarf | 7.5 | ||
| 2017-02-17 | CVE-2016-5039 | The get_attr_value function in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted object with all-bits on. | Libdwarf | 7.5 | ||
| 2017-02-17 | CVE-2016-5040 | libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a large length value in a compilation unit header. | Libdwarf | 7.5 | ||
| 2017-02-17 | CVE-2016-5042 | The dwarf_get_aranges_list function in libdwarf before 20160923 allows remote attackers to cause a denial of service (infinite loop and crash) via a crafted DWARF section. | Libdwarf | 7.5 | ||
| 2017-02-17 | CVE-2016-5043 | The dwarf_dealloc function in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted DWARF section. | Libdwarf | 7.5 | ||
| 2017-02-17 | CVE-2016-5044 | The WRITE_UNALIGNED function in dwarf_elf_access.c in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds write and crash) via a crafted DWARF section. | Libdwarf | 7.5 | ||
| 2017-02-17 | CVE-2016-7510 | The read_line_table_program function in dwarf_line_table_reader_common.c in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read) via crafted input. | Libdwarf | 6.5 | ||
| 2017-02-17 | CVE-2016-7511 | Integer overflow in the dwarf_die_deliv.c in libdwarf 20160613 allows remote attackers to cause a denial of service (crash) via a crafted file. | Libdwarf | 5.5 | ||
| 2017-02-24 | CVE-2016-5027 | dwarf_form.c in libdwarf 20160115 allows remote attackers to cause a denial of service (crash) via a crafted elf file. | Libdwarf | 5.5 |