CVE-2016-5029

Опубликовано: 17 фев. 2017

Источник: debian

Описание

The create_fullest_file_path function in libdwarf before 20160923 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted dwarf file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
dwarfutils	fixed	20160507+git20160523.9086738-1		package
dwarfutils	no-dsa		jessie	package
dwarfutils	no-dsa		wheezy	package

Примечания

https://sourceforge.net/p/libdwarf/code/ci/acae971371daa23a19358bc62204007d258fbc5e/

Связанные уязвимости

CVE-2016-5029

CVSS3: 6.5

ubuntu

почти 9 лет назад

The create_fullest_file_path function in libdwarf before 20160923 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted dwarf file.

CVE-2016-5029

redhat

больше 9 лет назад

The create_fullest_file_path function in libdwarf before 20160923 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted dwarf file.

CVE-2016-5029

CVSS3: 6.5

nvd

почти 9 лет назад

The create_fullest_file_path function in libdwarf before 20160923 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted dwarf file.

GHSA-vpq6-7984-6w49

CVSS3: 6.5

github

больше 3 лет назад

The create_fullest_file_path function in libdwarf before 20160923 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted dwarf file.