SUSE CVE-2016-8681

The dwarfgetabbrevforcode function in dwarfutil.c in libdwarf 20161001 and earlier allows remote attackers to cause a denial of service out-of-bounds read by calling the dwarfdump command on a crafted file...

SUSE CVE-2016-9480

libdwarf 2016-10-21 allows context-dependent attackers to obtain sensitive information or cause a denial of service by using the "malformed dwarf file" approach, related to a "Heap Buffer Over-read" issue affecting the dwarfutil.c component, aka DW201611-006...

CVE-2022-32200

libdwarf 0.4.0 has a heap-based buffer over-read in dwarfcheckstringvalid in dwarfutil.c...

libdwarf 缓冲区错误漏洞

libdwarf is a library and command line tool for reading and writing the DWARF2 standardized debug data format. A security vulnerability exists in libdwarf version 0.4.0, which stems from a heap-based buffer over-read in dwarfcheckstringvalid in dwarfutil.c. The vulnerability is caused by a...

CVE-2016-8681

CVE-2016-8681 affects libdwarf (dwarf_util.c, _dwarf_get_abbrev_for_code) in 2016-10-01 and earlier; vulnerable function can cause a denial of service via an out-of-bounds read when a crafted file is processed by dwarfdump. Multiple advisories note patch availability or versions less than 0.9.0-1...