PT-2024-24171 · Lief +1 · Lief +1

Name of the Vulnerable Software and Affected Versions: LIEF version 0.14.1 Description: An issue in the machd reader.c component allows a local attacker to obtain sensitive information via the name parameter. Recommendations: For LIEF version 0.14.1, consider restricting access to the name...

LIEF 缓冲区错误漏洞

LIEF is a cross-platform library from the individual developer Romain Thomas. It is used to parse, modify and abstract Elf, Pe and MachO formats. A security vulnerability exists in LIEF version v0.12.1, which stems from a heap buffer overflow in the...

PT-2022-24428 · Lief · Lief

Name of the Vulnerable Software and Affected Versions: LIEF version 365a16a Description: A reachable assertion abort was discovered in the BinaryStream.hpp component. Recommendations: For LIEF version 365a16a, consider disabling the use of the BinaryStream.hpp component until a patch is available...

PT-2022-24427 · Lief · Lief

Name of the Vulnerable Software and Affected Versions: LIEF version 365a16a Description: A heap-buffer overflow issue was discovered via the function print binary at /c/macho reader.c. This issue affects LIEF and can be exploited. Recommendations: For LIEF version 365a16a, update to a version tha...

autoit-ripper (>=1.0.0 <=1.0.1), checksec-py (>=0.0.1 <=0.5.1) +3 more potentially affected by CVE-2021-32297 via lief (=0.10.1)

lief PYPI version =0.10.1 is affected by a known vulnerability. The following packages have a transitive dependency on lief and may be impacted: - autoit-ripper =1.0.0, =0.0.1, =1.0.0, =1.0.1 - pysigtool =0.1.4 Source cves: CVE-2021-32297 Source advisory: OSV:GHSA-22X7-VWH9-5W4G...