CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2020-27545
https://notcve.org/view.php?id=CVE-2020-27545
15 Apr 2023 — libdwarf before 20201017 has a one-byte out-of-bounds read because of an invalid pointer dereference via an invalid line table in a crafted object. • http://web.archive.org/web/20190601140703/https://sourceforge.net/projects/libdwarf • CWE-763: Release of Invalid Pointer or Reference •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2020-28163
https://notcve.org/view.php?id=CVE-2020-28163
15 Apr 2023 — libdwarf before 20201201 allows a dwarf_print_lines.c NULL pointer dereference and application crash via a DWARF5 line-table header that has an invalid FORM for a pathname. • http://web.archive.org/web/20190601140703/https://sourceforge.net/projects/libdwarf • CWE-476: NULL Pointer Dereference •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-14249
https://notcve.org/view.php?id=CVE-2019-14249
24 Jul 2019 — dwarf_elf_load_headers.c in libdwarf before 2019-07-05 allows attackers to cause a denial of service (division by zero) via an ELF file with a zero-size section group (SHT_GROUP), as demonstrated by dwarfdump. En el archivo dwarf_elf_load_headers.c en libdwarf antes del 05-07-2019 permite a los atacantes causar una denegación de servicio (división por cero) por medio de un archivo ELF con un grupo de sección de tamaño cero (SHT_GROUP), como es demostrado por dwarfdump. • http://www.securityfocus.com/bid/109380 • CWE-369: Divide By Zero •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2014-9482
https://notcve.org/view.php?id=CVE-2014-9482
16 Jan 2018 — Use-after-free vulnerability in dwarfdump in libdwarf 20130126 through 20140805 might allow remote attackers to cause a denial of service (program crash) via a crafted ELF file. Vulnerabilidad de uso de memoria previamente liberada en dwarfdump en libdwarf 20130126 hasta la versión 20140805 podría permitir que atacantes remotos provoquen una denegación de servicio (cierre inesperado del programa) mediante un archivo ELF manipulado. • http://www.openwall.com/lists/oss-security/2014/12/31/3 • CWE-416: Use After Free •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2017-9998
https://notcve.org/view.php?id=CVE-2017-9998
28 Jun 2017 — The _dwarf_decode_s_leb128_chk function in dwarf_leb.c in libdwarf through 2017-06-28 allows remote attackers to cause a denial of service (Segmentation fault) via a crafted file. La función _dwarf_decode_s_leb128_chk del archivo dward_leb.c en libdward hasta el 28-06-2017 permite a un atacante remoto causar una denegación de servicio (fallo de segmentación) mediante la manipulación del archivo. • http://www.securityfocus.com/bid/99310 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2015-8538
https://notcve.org/view.php?id=CVE-2015-8538
07 Jun 2017 — dwarf_leb.c in libdwarf allows attackers to cause a denial of service (SIGSEGV). dwarf_leb.c en libdwarf presenta una vulnerabilidad que permite a atacantes remotos causar una denegación de servicio (SIGSEGV). • http://www.openwall.com/lists/oss-security/2015/12/10/3 • CWE-20: Improper Input Validation •
CVSS: 9.1EPSS: 0%CPEs: 1EXPL: 0CVE-2017-9053
https://notcve.org/view.php?id=CVE-2017-9053
18 May 2017 — An issue, also known as DW201703-005, was discovered in libdwarf 2017-03-21. A heap-based buffer over-read in _dwarf_read_loc_expr_op() is due to a failure to check a pointer for being in bounds (in a few places in this function). Un problema, que también se conoce como DW201703-005, se detectó en libdwarf el 21-03-2017. Una lectura excesiva de búfer en la región heap de la memoria en la función _dwarf_read_loc_expr_op() debido a un fallo al comprobar que un puntero este dentro de límites (en algunos lugare... • https://www.prevanders.net/dwarfbug.html • CWE-125: Out-of-bounds Read •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-9052
https://notcve.org/view.php?id=CVE-2017-9052
18 May 2017 — An issue, also known as DW201703-006, was discovered in libdwarf 2017-03-21. A heap-based buffer over-read in dwarf_formsdata() is due to a failure to check a pointer for being in bounds (in a few places in this function) and a failure in a check in dwarf_attr_list(). Un problema, que también se conoce como DW201703-006, se detectó en libdwarf el 21-03-2017. Una lectura excesiva de búfer en la región heap de la memoria en la función dwarf_formsdata() debido a un fallo al comprobar que un puntero este dentro... • http://www.securityfocus.com/bid/98553 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-125: Out-of-bounds Read •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-9054
https://notcve.org/view.php?id=CVE-2017-9054
18 May 2017 — An issue, also known as DW201703-002, was discovered in libdwarf 2017-03-21. In _dwarf_decode_s_leb128_chk() a byte pointer was dereferenced just before it was checked for being in bounds, leading to a heap-based buffer over-read. Un problema, que también se conoce como DW201703-002, se detectó en libdwarf el 21-03-2017. En la función _dwarf_decode_s_leb128_chk() un puntero byte fue desreferenciado justo antes de comprobar que estuviera dentro de límites, lo que conlleva a una lectura excesiva de búfer en l... • https://www.prevanders.net/dwarfbug.html • CWE-125: Out-of-bounds Read •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-9055
https://notcve.org/view.php?id=CVE-2017-9055
18 May 2017 — An issue, also known as DW201703-001, was discovered in libdwarf 2017-03-21. In dwarf_formsdata() a few data types were not checked for being in bounds, leading to a heap-based buffer over-read. Se ha descubierto un fallo, también conocido como DW201703-001, en libdwarf el 2017-03-21. En dwarf_formsdata() para algunos tipos de datos no se comprobaba que estuvieran dentro de los límites, lo que provocó una sobrelectura de búfer basada en memoria dinámica o heap. • https://www.prevanders.net/dwarfbug.html • CWE-125: Out-of-bounds Read •