The _dwarf_decode_s_leb128_chk function in dwarf_leb.c in libdwarf through 2017-06-28 allows remote attackers to cause a denial of service (Segmentation fault) via a crafted file.
Max CVSS
6.5
EPSS Score
0.09%
Published
2017-06-28
Updated
2022-03-01
An issue, also known as DW201703-001, was discovered in libdwarf 2017-03-21. In dwarf_formsdata() a few data types were not checked for being in bounds, leading to a heap-based buffer over-read.
Max CVSS
9.8
EPSS Score
0.22%
Published
2017-05-18
Updated
2022-03-01
An issue, also known as DW201703-002, was discovered in libdwarf 2017-03-21. In _dwarf_decode_s_leb128_chk() a byte pointer was dereferenced just before it was checked for being in bounds, leading to a heap-based buffer over-read.
Max CVSS
9.8
EPSS Score
0.22%
Published
2017-05-18
Updated
2022-03-01
An issue, also known as DW201703-005, was discovered in libdwarf 2017-03-21. A heap-based buffer over-read in _dwarf_read_loc_expr_op() is due to a failure to check a pointer for being in bounds (in a few places in this function).
Max CVSS
9.1
EPSS Score
0.22%
Published
2017-05-18
Updated
2022-03-01
An issue, also known as DW201703-006, was discovered in libdwarf 2017-03-21. A heap-based buffer over-read in dwarf_formsdata() is due to a failure to check a pointer for being in bounds (in a few places in this function) and a failure in a check in dwarf_attr_list().
Max CVSS
9.8
EPSS Score
0.23%
Published
2017-05-18
Updated
2019-10-18
(1) libdwarf/dwarf_leb.c and (2) dwarfdump/print_frames.c in libdwarf before 20161124 allow remote attackers to have unspecified impact via a crafted bit pattern in a signed leb number, aka a "negation overflow."
Max CVSS
9.8
EPSS Score
1.28%
Published
2017-02-28
Updated
2022-03-01
The dwarf_get_aranges_list function in dwarf_arrange.c in Libdwarf before 20161124 allows remote attackers to cause a denial of service (out-of-bounds read).
Max CVSS
7.5
EPSS Score
0.59%
Published
2017-03-23
Updated
2022-03-01
Heap-based buffer overflow in the _dwarf_skim_forms function in libdwarf/dwarf_macro5.c in Libdwarf before 20161124 allows remote attackers to cause a denial of service (out-of-bounds read).
Max CVSS
7.5
EPSS Score
0.65%
Published
2017-03-23
Updated
2022-03-01
The _dwarf_get_abbrev_for_code function in dwarf_util.c in libdwarf 20161001 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) by calling the dwarfdump command on a crafted file.
Max CVSS
5.5
EPSS Score
0.14%
Published
2017-02-15
Updated
2020-06-11
The _dwarf_get_abbrev_for_code function in dwarf_util.c in libdwarf 20161001 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) by calling the dwarfdump command on a crafted file.
Max CVSS
6.5
EPSS Score
0.25%
Published
2017-02-15
Updated
2022-03-01
The _dwarf_get_size_of_val function in libdwarf/dwarf_util.c in Libdwarf before 20161124 allows remote attackers to cause a denial of service (out-of-bounds read) by calling the dwarfdump command on a crafted file.
Max CVSS
6.5
EPSS Score
0.12%
Published
2017-02-15
Updated
2022-03-01
Integer overflow in the dwarf_die_deliv.c in libdwarf 20160613 allows remote attackers to cause a denial of service (crash) via a crafted file.
Max CVSS
5.5
EPSS Score
0.13%
Published
2017-02-17
Updated
2022-03-01
The read_line_table_program function in dwarf_line_table_reader_common.c in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read) via crafted input.
Max CVSS
6.5
EPSS Score
0.12%
Published
2017-02-17
Updated
2022-03-01
The _dwarf_read_loc_section function in dwarf_loc.c in libdwarf 20160613 allows attackers to cause a denial of service (buffer over-read) via a crafted file.
Max CVSS
5.5
EPSS Score
0.08%
Published
2017-01-23
Updated
2022-04-11
The WRITE_UNALIGNED function in dwarf_elf_access.c in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds write and crash) via a crafted DWARF section.
Max CVSS
7.5
EPSS Score
0.20%
Published
2017-02-17
Updated
2022-03-01
The dwarf_dealloc function in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted DWARF section.
Max CVSS
7.5
EPSS Score
0.14%
Published
2017-02-17
Updated
2022-03-01
The dwarf_get_aranges_list function in libdwarf before 20160923 allows remote attackers to cause a denial of service (infinite loop and crash) via a crafted DWARF section.
Max CVSS
7.5
EPSS Score
0.16%
Published
2017-02-17
Updated
2022-03-01
dwarf_macro5.c in libdwarf before 20160923 allows remote attackers to cause a denial of service (NULL pointer dereference) via a debugging information entry using DWARF5 and without a DW_AT_name.
Max CVSS
7.5
EPSS Score
0.35%
Published
2017-04-10
Updated
2022-03-01
libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a large length value in a compilation unit header.
Max CVSS
7.5
EPSS Score
0.14%
Published
2017-02-17
Updated
2022-03-01
The get_attr_value function in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted object with all-bits on.
Max CVSS
7.5
EPSS Score
0.14%
Published
2017-02-17
Updated
2022-03-01
The dwarf_get_macro_startend_file function in dwarf_macro5.c in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted string offset for .debug_str.
Max CVSS
7.5
EPSS Score
0.13%
Published
2017-02-17
Updated
2022-03-01
The _dwarf_load_section function in libdwarf before 20160923 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
Max CVSS
6.5
EPSS Score
0.08%
Published
2017-02-17
Updated
2022-03-01
The dump_block function in print_sections.c in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read) via crafted frame data.
Max CVSS
7.5
EPSS Score
0.14%
Published
2017-02-17
Updated
2022-03-01
The _dwarf_read_line_table_header function in dwarf_line_table_reader.c in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file.
Max CVSS
6.5
EPSS Score
0.08%
Published
2017-02-17
Updated
2022-03-01
dwarf_elf_access.c in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted file, related to relocation records.
Max CVSS
6.5
EPSS Score
0.08%
Published
2017-02-17
Updated
2022-03-01
35 vulnerabilities found
1 2
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!