afs-file-validator (=1.0.1), apkutils (>=1.0.2 <=1.0.4) +43 more potentially affected by CVE-2025-15504 via lief (>=0.10.1 <=0.17.1)

lief PYPI version =0.10.1, =1.0.2, =1.0.0, =0.1.0, =1.0.0, =0.0.0, =0.4.2, =0.0.1, =2024.9.24, =5.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.1 - famework =0.1.5 and more Source cves: CVE-2025-15504 Source advisory: SNYK:PYTHON-LIEF-14912565...

afs-file-validator (=1.0.1), apkutils (>=1.0.2 <=1.0.4) +43 more potentially affected by CVE-2025-15504 via lief (>=0.10.1 <=0.17.1)

lief PYPI version =0.10.1, =1.0.2, =1.0.0, =0.1.0, =1.0.0, =0.0.0, =0.4.2, =0.0.1, =2024.9.24, =5.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.1 - famework =0.1.5 and more Source cves: CVE-2025-15504 Source advisory: OSV:GHSA-MJJP-XJFG-97WG...

GHSA-MJJP-XJFG-97WG LIEF is vulnerable to segmentation fault

A security flaw has been discovered in lief-project LIEF up to 0.17.1. Affected by this issue is the function Parser::parsebinary of the file src/ELF/Parser.tcc of the component ELF Binary Parser. The manipulation results in null pointer dereference. The attack must be initiated from a local...

CVE-2025-15504

A security flaw has been discovered in lief-project LIEF up to 0.17.1. Affected by this issue is the function Parser::parsebinary of the file src/ELF/Parser.tcc of the component ELF Binary Parser. The manipulation results in null pointer dereference. The attack must be initiated from a local...

EUVD-2021-0109

Malware in sbrugna...

EUVD-2022-0143

Malicious code in bioql PyPI...

EUVD-2022-0144

Malicious code in bioql PyPI...

CVE-2024-31636

An issue in LIEF v.0.14.1 allows a local attacker to obtain sensitive information via the name parameter of the machdreader.c component...

CVE-2022-40922

A vulnerability in the LIEF::MachO::BinaryParser::initandparse function of LIEF v0.12.1 allows attackers to cause a denial of service DOS through a segmentation fault via a crafted MachO file...

CVE-2021-32297

An issue was discovered in LIEF through 0.11.4. A heap-buffer-overflow exists in the function main located in pereader.c. It allows an attacker to cause code Execution...

GHSA-377P-G8GR-5WPG LIEF obtain sensitive information via the name parameter

An issue in LIEF v.0.14.1 allows a local attacker to obtain sensitive information via the name parameter of the machdreader.c component...

afs-file-validator (=1.0.1), apkutils (>=1.0.2 <=1.0.4) +28 more potentially affected by CVE-2024-31636 via lief (>=0.10.1 <=0.14.1)

lief PYPI version =0.10.1, =1.0.2, =1.0.0, =0.0.0, =0.4.2, =0.0.1, =2024.9.24, =5.0.0, =1.0.0, =0.0.1, =0.0.1, =2.0.1, =1.2.0, =1.5.0 and more Source cves: CVE-2024-31636 Source advisory: OSV:GHSA-377P-G8GR-5WPG...

afs-file-validator (>=1.0.0 <=1.0.1), aitune (=0.3.0) +125 more potentially affected by CVE-2024-31636 via lief (>=0.10.1 <=0.17.6)

lief PYPI version =0.10.1, =1.0.0, =0.1.0, =1.0.2, =0.0.3, =1.0.0, =0.1.0, =0.8.16, =1.0.0, =1.0.0, =1.3.4, =0.0.0, =0.2.0, =0.2.4 and more Source cves: CVE-2024-31636 Source advisory: OSV:PYSEC-2024-280...

PYSEC-2024-280

An issue in LIEF v.0.14.1 allows a local attacker to obtain sensitive information via the name parameter of the machdreader.c component...

CVE-2024-31636

An issue in LIEF v.0.14.1 allows a local attacker to obtain sensitive information via the name parameter of the machdreader.c component...

CVE-2024-31636

CVE-2024-31636, affecting LIEF v0.14.1, enables local information disclosure via the name parameter in machd_reader.c. Root cause: input handling flaw in machd_reader.c leading to sensitive data exposure. Affected product/version: LIEF 0.14.1. Exploitation: local. No patch details provided in the...

CVE-2024-31636

An issue in LIEF v.0.14.1 allows a local attacker to obtain sensitive information via the name parameter of the machdreader.c component...

apkutils (>=1.0.2 <=1.0.4), autoit-ripper (>=1.0.0 <=1.0.1) +8 more potentially affected by CVE-2022-43171 via lief (>=0.10.1 <=0.12.2)

lief PYPI version =0.10.1, =1.0.2, =1.0.0, =0.0.0, =0.0.1, =1.0.0, =1.0.1 - loaneligibilitypredictionsystem =0.0.6 - pyqbdl =0.1.0 - pysigtool =0.1.4 Source cves: CVE-2022-43171 Source advisory: OSV:GHSA-JVP9-PHWP-P738...

apkutils (>=1.0.2 <=1.0.4), autoit-ripper (>=1.0.0 <=1.0.1) +8 more potentially affected by CVE-2022-43171 via lief (>=0.10.1 <=0.12.2)

lief PYPI version =0.10.1, =1.0.2, =1.0.0, =0.0.0, =0.0.1, =1.0.0, =1.0.1 - loaneligibilitypredictionsystem =0.0.6 - pyqbdl =0.1.0 - pysigtool =0.1.4 Source cves: CVE-2022-43171 Source advisory: OSV:PYSEC-2022-43140...

PT-2022-26788 · Lief · Lief

Name of the Vulnerable Software and Affected Versions: LIEF versions prior to 0.12.3 Description: A heap buffer overflow in the parse dyldinfo generic bind function of LIEF's BinaryParser allows attackers to cause a Denial of Service DoS via a crafted MachO file. Recommendations: For versions pri...