CVE-2016-5029

2017-02-1717:00:00

mitre

www.cve.org

6.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

34.2%

JSON

The create_fullest_file_path function in libdwarf before 20160923 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted dwarf file.

References

www.openwall.com/lists/oss-security/2016/05/24/1

www.openwall.com/lists/oss-security/2016/05/25/1

www.prevanders.net/dwarfbug.html