Lucene search
Ubuntu.comUB:CVE-2020-28163HistoryApr 16, 2023 - 12:00 a.m.
CVE-2020-28163
2023-04-1600:00:00
ubuntu.com
ubuntu.com
5
libdwarf
vulnerability
cve-2020-28163
null pointer
dereference
crash
dwarf5
line-table
header
invalid form
pathname
unix
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
50.9%
libdwarf before 20201201 allows a dwarf_print_lines.c NULL pointer
dereference and application crash via a DWARF5 line-table header that has
an invalid FORM for a pathname.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 18.04 | noarch | dwarfutils | < any | UNKNOWN |
| ubuntu | 20.04 | noarch | dwarfutils | < any | UNKNOWN |
| ubuntu | 16.04 | noarch | dwarfutils | < any | UNKNOWN |
References
Related
cve
cve
CVE-2020-28163
2023-04-16 00:15:07
prion
prion
Null pointer dereference
2023-04-16 00:15:00
osv
osv
CVE-2020-28163
2023-04-16 00:15:07
cvelist
cvelist
CVE-2020-28163
2023-04-15 00:00:00
veracode
veracode
Denial Of Service (DoS)
2023-04-21 11:21:58
redhatcve
redhatcve
CVE-2020-28163
2021-11-25 14:17:00
debiancve
debiancve
CVE-2020-28163
2023-04-16 00:15:07
nvd
nvd
CVE-2020-28163
2023-04-16 00:15:07
cbl_mariner
cbl_mariner
CVE-2020-28163 affecting package libdwarf for versions less than 0.9.0
2024-06-21 03:08:17
nessus
nessus
RHEL 8 : libdwarf (Unpatched Vulnerability)
2024-06-03 00:00:00
RHEL 7 : libdwarf (Unpatched Vulnerability)
2024-05-11 00:00:00
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
50.9%
Related for UB:CVE-2020-28163