Lucene search

K
osvGoogleOSV:CVE-2017-15023
HistoryOct 05, 2017 - 1:29 a.m.

CVE-2017-15023

2017-10-0501:29:06
Google
osv.dev
13
cve-2017-15023
dwarf2.c
binutils 2.29
format count
denial of service
null pointer dereference
elf file
concat_filename
security
software

AI Score

7

Confidence

High

EPSS

0.005

Percentile

75.8%

read_formatted_entries in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, does not properly validate the format count, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted ELF file, related to concat_filename.

AI Score

7

Confidence

High

EPSS

0.005

Percentile

75.8%