Lief Security Vulnerabilities
An issue was discovered in LIEF through 0.11.4. A heap-buffer-overflow exists in the function main located in pe_reader.c. It allows an attacker to cause code Execution.
8.8CVSS
8.5AI Score
0.002EPSS
LIEF commit 5d1d643 was discovered to contain a heap-buffer overflow in the component /core/CorePrPsInfo.tcc.
7.8CVSS
7.6AI Score
0.001EPSS
LIEF commit 5d1d643 was discovered to contain a segmentation violation via the function LIEF::MachO::SegmentCommand::file_offset() at /MachO/SegmentCommand.cpp.
5.5CVSS
5.4AI Score
0.001EPSS
LIEF commit 365a16a was discovered to contain a heap-buffer overflow via the function print_binary at /c/macho_reader.c.
7.8CVSS
7.6AI Score
0.001EPSS
LIEF commit 365a16a was discovered to contain a reachable assertion abort via the component BinaryStream.hpp.
5.5CVSS
5.5AI Score
0.001EPSS
LIEF commit 365a16a was discovered to contain a segmentation violation via the component CoreFile.tcc:69.
5.5CVSS
5.4AI Score
0.001EPSS
A vulnerability in the LIEF::MachO::BinaryParser::init_and_parse function of LIEF v0.12.1 allows attackers to cause a denial of service (DOS) through a segmentation fault via a crafted MachO file.
6.5CVSS
6AI Score
0.001EPSS
A vulnerability in the LIEF::MachO::SegmentCommand::virtual_address function of LIEF v0.12.1 allows attackers to cause a denial of service (DOS) through a segmentation fault via a crafted MachO file.
6.5CVSS
6.2AI Score
0.001EPSS
A heap buffer overflow in the LIEF::MachO::BinaryParser::parse_dyldinfo_generic_bind function of LIEF v0.12.1 allows attackers to cause a Denial of Service (DoS) via a crafted MachO file.
6.5CVSS
6.5AI Score
0.001EPSS