Lucene search
K

664 matches found

OSV
OSV
added 2023/04/16 12:15 a.m.1 views

UBUNTU-CVE-2020-28163

libdwarf before 20201201 allows a dwarfprintlines.c NULL pointer dereference and application crash via a DWARF5 line-table header that has an invalid FORM for a pathname...

6.5CVSS6.8AI score0.00787EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2023/04/16 12:15 a.m.23 views

CVE-2020-28163

libdwarf before 20201201 allows a dwarfprintlines.c NULL pointer dereference and application crash via a DWARF5 line-table header that has an invalid FORM for a pathname...

6.5CVSS6.8AI score0.00787EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2023/04/16 12:15 a.m.21 views

CVE-2020-27545

libdwarf before 20201017 has a one-byte out-of-bounds read because of an invalid pointer dereference via an invalid line table in a crafted object...

6.5CVSS6.8AI score0.00823EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/04/15 12:0 a.m.16 views

CVE-2020-27545

libdwarf before 20201017 has a one-byte out-of-bounds read because of an invalid pointer dereference via an invalid line table in a crafted object...

6.3AI score0.00823EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2023/04/15 12:0 a.m.6 views

CVE-2020-28163

libdwarf before 20201201 allows a dwarfprintlines.c NULL pointer dereference and application crash via a DWARF5 line-table header that has an invalid FORM for a pathname...

6.8AI score0.00787EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2023/04/15 12:0 a.m.22 views

CVE-2020-28163

libdwarf before 20201201 allows a dwarfprintlines.c NULL pointer dereference and application crash via a DWARF5 line-table header that has an invalid FORM for a pathname...

6.5CVSS6.6AI score0.00787EPSS
Exploits0
Debian CVE
Debian CVE
added 2023/04/15 12:0 a.m.24 views

CVE-2020-27545

libdwarf before 20201017 has a one-byte out-of-bounds read because of an invalid pointer dereference via an invalid line table in a crafted object...

6.5CVSS6.5AI score0.00823EPSS
Exploits0
Cvelist
Cvelist
added 2023/04/15 12:0 a.m.33 views

CVE-2020-28163

libdwarf before 20201201 allows a dwarfprintlines.c NULL pointer dereference and application crash via a DWARF5 line-table header that has an invalid FORM for a pathname...

6.4AI score0.00787EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2023/04/15 12:0 a.m.3 views

CVE-2020-27545

libdwarf before 20201017 has a one-byte out-of-bounds read because of an invalid pointer dereference via an invalid line table in a crafted object...

6.6AI score0.00823EPSS
Exploits0References5
CVE
CVE
added 2023/04/15 12:0 a.m.126 views

CVE-2020-28163

CVE-2020-28163 affects libdwarf prior to 20201201. A NULL pointer dereference in the dwarf_print_lines.c path occurs when a DWARF5 line-table header uses an invalid FORM for a pathname, leading to an application crash. Public vulnerability descriptions consistently cite this as the root cause; ex...

6.5CVSS6.3AI score0.00787EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2023/04/15 12:0 a.m.128 views

CVE-2020-27545

CVE-2020-27545 affects libdwarf: before 20201017 there is a one-byte out-of-bounds read caused by an invalid pointer dereference via an invalid line table in a crafted object. This can lead to a crash (DoS) and availability impact. The CVSS v3.1 base score is 6.5 (Medium); attack vector: Network,...

6.5CVSS6.2AI score0.00823EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2023/04/15 12:0 a.m.1 views

PT-2023-11765 · Libdwarf · Libdwarf

Name of the Vulnerable Software and Affected Versions: libdwarf versions prior to 20201201 Description: The issue allows a NULL pointer dereference and application crash via a DWARF5 line-table header that has an invalid FORM for a pathname in the dwarf print lines.c file. Recommendations: For...

6.5CVSS6.3AI score0.00787EPSS
Exploits0References12
AlpineLinux
AlpineLinux
added 2023/04/15 12:0 a.m.10 views

CVE-2020-27545

libdwarf before 20201017 has a one-byte out-of-bounds read because of an invalid pointer dereference via an invalid line table in a crafted object...

6.5CVSS7.2AI score0.00823EPSS
Exploits0References5
AlpineLinux
AlpineLinux
added 2023/04/15 12:0 a.m.11 views

CVE-2020-28163

libdwarf before 20201201 allows a dwarfprintlines.c NULL pointer dereference and application crash via a DWARF5 line-table header that has an invalid FORM for a pathname...

6.5CVSS7.3AI score0.00787EPSS
Exploits0References4
Veracode
Veracode
added 2023/04/04 1:14 a.m.17 views

Denial Of Service (DoS)

libdwarf is vulnerable to Denial of Service DoS attacks. dwarfelfloadheaders.c allows a remote attacker to cause a denial of service division by zero via an ELF file with a zero-size section group...

6.5CVSS6.1AI score0.0273EPSS
Exploits0References4Affected Software1
Amazon
Amazon
added 2023/03/22 12:0 a.m.8 views

Medium: libdwarf

Issue Overview: A double-free vulnerability was found in libdwarf's dwarfexpandframeinstructions function of the dwarfframe.c file. A carefully crafted object file could cause the 'dwarfdump' utility to do a double free in handling an error condition. This issue could cause a segmentation violati...

8.8CVSS7.5AI score0.00935EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/03/21 12:0 a.m.21 views

Amazon Linux 2023 : libdwarf, libdwarf-devel, libdwarf-static (ALAS2023-2023-093)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-093 advisory. A double-free vulnerability was found in libdwarf's dwarfexpandframeinstructions function of the dwarfframe.c file. A carefully crafted object file could cause the 'dwarfdump' utility to do a double fre...

8.8CVSS7AI score0.00935EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:24 a.m.3 views

SUSE CVE-2014-9482

Use-after-free vulnerability in dwarfdump in libdwarf 20130126 through 20140805 might allow remote attackers to cause a denial of service program crash via a crafted ELF file...

6.5CVSS6.8AI score0.02225EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:11 a.m.4 views

SUSE CVE-2015-8538

dwarfleb.c in libdwarf allows attackers to cause a denial of service SIGSEGV...

6.5CVSS6.8AI score0.0122EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:11 a.m.3 views

SUSE CVE-2015-8750

libdwarf 20151114 and earlier allows remote attackers to cause a denial of service NULL pointer dereference and crash via a debugabbrev section marked NOBITS in an ELF file...

6.5CVSS6.7AI score0.01902EPSS
Exploits0References3
Rows per page
Query Builder