Lucene search
Veracode Vulnerability DatabaseVERACODE:40252HistoryApr 21, 2023 - 11:21 a.m.
Denial Of Service (DoS)
2023-04-2111:21:58
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
dos
libdwarf.so
vulnerability
pathname
null pointer
0.001 Low
EPSS
Percentile
50.9%
libdwarf.so is vulnerable to Denial Of Service (DoS). The vulnerability exists due to the use of invalid form for a pathname causing a null pointer dereference which results in an application crash.
| CPE | Name | Operator | Version |
|---|---|---|---|
| libdwarf.so | eq | 0.5.0 | |
| libdwarf.so | le | 1.20180129.0 | |
| libdwarf.so | eq | 0.5.0 | |
| libdwarf.so | le | 1.20180129.0 |
References
web.archive.org/web/20190601140703/sourceforge.net/projects/libdwarf/
bugzilla.redhat.com/show_bug.cgi?id=2026000
github.com/advisories/GHSA-7732-hqr2-cr7r
github.com/davea42/libdwarf-code/commit/faf99408e3f9f706fc3809dd400e831f989778d3
security-tracker.debian.org/tracker/CVE-2020-28163
www.prevanders.net/dwarfbug.html#DW202010-003
Related
osv
osv
CVE-2020-28163
2023-04-16 00:15:07
cvelist
cvelist
CVE-2020-28163
2023-04-15 00:00:00
redhatcve
redhatcve
CVE-2020-28163
2021-11-25 14:17:00
debiancve
debiancve
CVE-2020-28163
2023-04-16 00:15:07
ubuntucve
ubuntucve
CVE-2020-28163
2023-04-16 00:00:00
nvd
nvd
CVE-2020-28163
2023-04-16 00:15:07
cbl_mariner
cbl_mariner
CVE-2020-28163 affecting package libdwarf for versions less than 0.9.0
2024-06-21 03:08:17
cve
cve
CVE-2020-28163
2023-04-16 00:15:07
prion
prion
Null pointer dereference
2023-04-16 00:15:00
nessus
nessus
RHEL 8 : libdwarf (Unpatched Vulnerability)
2024-06-03 00:00:00
RHEL 7 : libdwarf (Unpatched Vulnerability)
2024-05-11 00:00:00