CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 2CVE-2016-5041
https://notcve.org/view.php?id=CVE-2016-5041
dwarf_macro5.c in libdwarf before 20160923 allows remote attackers to cause a denial of service (NULL pointer dereference) via a debugging information entry using DWARF5 and without a DW_AT_name. dwarf_macro5.c en libdwarf en versiones anteriores a 20160923 permite que los atacantes remotos provoquen una denegación de servicio (referencia a puntero NULL) por medio de una entrada de información de depuración usando DWARF5 y sin un DW_AT_name. • http://www.openwall.com/lists/oss-security/2016/05/24/1 http://www.openwall.com/lists/oss-security/2016/05/25/1 https://www.prevanders.net/dwarfbug.html • CWE-476: NULL Pointer Dereference •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2016-9275
https://notcve.org/view.php?id=CVE-2016-9275
Heap-based buffer overflow in the _dwarf_skim_forms function in libdwarf/dwarf_macro5.c in Libdwarf before 20161124 allows remote attackers to cause a denial of service (out-of-bounds read). Desbordamiento de búfer basado en memoria dinámica en la función _dwarf_skim_forms en libdwarf/dwarf_macro5.c en Libdwarf en versiones anteriores a 20161124 permite a atacantes remotos provocar una denegación de servicio (lectura fuera de límites). • http://www.openwall.com/lists/oss-security/2016/11/11/7 http://www.securityfocus.com/bid/94284 https://blogs.gentoo.org/ago/2016/11/07/libdwarf-heap-based-buffer-overflow-in-_dwarf_skim_forms-dwarf_macro5-c https://bugzilla.redhat.com/show_bug.cgi?id=1394802 https://sourceforge.net/p/libdwarf/code/ci/583f8834083b5ef834c497f5b47797e16101a9a6 • CWE-787: Out-of-bounds Write •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2016-9276
https://notcve.org/view.php?id=CVE-2016-9276
The dwarf_get_aranges_list function in dwarf_arrange.c in Libdwarf before 20161124 allows remote attackers to cause a denial of service (out-of-bounds read). La función dwarf_get_aranges_list en dwarf_arrange.c en Libdwarf en versiones anteriores a 20161124 permite a atacantes remotos provocar una denegación de servicio (lectura fuera de límites). • http://www.openwall.com/lists/oss-security/2016/11/11/9 http://www.securityfocus.com/bid/94284 https://blogs.gentoo.org/ago/2016/11/07/libdwarf-heap-based-buffer-overflow-in-dwarf_get_aranges_list-dwarf_arange-c https://bugzilla.redhat.com/show_bug.cgi?id=1394804 https://sourceforge.net/p/libdwarf/code/ci/583f8834083b5ef834c497f5b47797e16101a9a6 • CWE-125: Out-of-bounds Read •
CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 1CVE-2016-9558
https://notcve.org/view.php?id=CVE-2016-9558
(1) libdwarf/dwarf_leb.c and (2) dwarfdump/print_frames.c in libdwarf before 20161124 allow remote attackers to have unspecified impact via a crafted bit pattern in a signed leb number, aka a "negation overflow." (1) libdwarf/dwarf_leb.c y (2) dwarfdump/print_frames.c en libdwarf en versiones anteriores a 20161124 permite a atacantes remotos tener un impacto no especificado a través de un bit manipulado en un número de leb firmado, también conocido como "desbordamiento de negación" • http://www.openwall.com/lists/oss-security/2016/11/19/6 http://www.openwall.com/lists/oss-security/2016/11/23/3 http://www.securityfocus.com/bid/94491 https://blogs.gentoo.org/ago/2016/11/19/libdwarf-negation-overflow-in-dwarf_leb-c https://sourceforge.net/p/libdwarf/code/ci/4f19e1050cd8e9ddf2cb6caa061ff2fec4c9b5f9/#diff-5 https://www.prevanders.net/dwarfbug.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2016-5027
https://notcve.org/view.php?id=CVE-2016-5027
dwarf_form.c in libdwarf 20160115 allows remote attackers to cause a denial of service (crash) via a crafted elf file. dwarf_form.c en libdwarf 20160115 permite a atacantes provocar una denegación de servicio (caída) a través de un archivo elf manipulado. • http://www.openwall.com/lists/oss-security/2016/05/24/1 http://www.openwall.com/lists/oss-security/2016/05/25/1 https://bugzilla.redhat.com/show_bug.cgi?id=1330237 • CWE-476: NULL Pointer Dereference •