Shodan
Vulnerabilities
Vulnerable Software
Libdwarf Project:  >> Libdwarf  >> 2000-06-12  Security Vulnerabilities
CVE-2020-27545
libdwarf before 20201017 has a one-byte out-of-bounds read because of an invalid pointer dereference via an invalid line table in a crafted object.
CVSS Score
6.5
EPSS Score
0.001
Published
2023-04-16
CVE-2020-28163
libdwarf before 20201201 allows a dwarf_print_lines.c NULL pointer dereference and application crash via a DWARF5 line-table header that has an invalid FORM for a pathname.
CVSS Score
6.5
EPSS Score
0.001
Published
2023-04-16
CVE-2019-14249
dwarf_elf_load_headers.c in libdwarf before 2019-07-05 allows attackers to cause a denial of service (division by zero) via an ELF file with a zero-size section group (SHT_GROUP), as demonstrated by dwarfdump.
CVSS Score
6.5
EPSS Score
0.006
Published
2019-07-24
CVE-2017-9998
The _dwarf_decode_s_leb128_chk function in dwarf_leb.c in libdwarf through 2017-06-28 allows remote attackers to cause a denial of service (Segmentation fault) via a crafted file.
CVSS Score
6.5
EPSS Score
0.006
Published
2017-06-28
CVE-2015-8538
dwarf_leb.c in libdwarf allows attackers to cause a denial of service (SIGSEGV).
CVSS Score
6.5
EPSS Score
0.004
Published
2017-06-07
CVE-2016-5041
dwarf_macro5.c in libdwarf before 20160923 allows remote attackers to cause a denial of service (NULL pointer dereference) via a debugging information entry using DWARF5 and without a DW_AT_name.
CVSS Score
7.5
EPSS Score
0.009
Published
2017-04-10
CVE-2016-9275
Heap-based buffer overflow in the _dwarf_skim_forms function in libdwarf/dwarf_macro5.c in Libdwarf before 20161124 allows remote attackers to cause a denial of service (out-of-bounds read).
CVSS Score
7.5
EPSS Score
0.007
Published
2017-03-23
CVE-2016-9276
The dwarf_get_aranges_list function in dwarf_arrange.c in Libdwarf before 20161124 allows remote attackers to cause a denial of service (out-of-bounds read).
CVSS Score
7.5
EPSS Score
0.009
Published
2017-03-23
CVE-2016-9558
(1) libdwarf/dwarf_leb.c and (2) dwarfdump/print_frames.c in libdwarf before 20161124 allow remote attackers to have unspecified impact via a crafted bit pattern in a signed leb number, aka a "negation overflow."
CVSS Score
9.8
EPSS Score
0.012
Published
2017-02-28
CVE-2016-7510
The read_line_table_program function in dwarf_line_table_reader_common.c in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read) via crafted input.
CVSS Score
6.5
EPSS Score
0.006
Published
2017-02-17


Products
Pricing
Contact Us

Shodan ® - All rights reserved