CVE-2016-7511

Опубликовано: 17 фев. 2017

Источник: debian

Описание

Integer overflow in the dwarf_die_deliv.c in libdwarf 20160613 allows remote attackers to cause a denial of service (crash) via a crafted file.

Пакет	Статус	Версия исправления	Релиз	Тип
dwarfutils	fixed	20160923-1		package
dwarfutils	no-dsa		jessie	package

https://sourceforge.net/p/libdwarf/bugs/3/
https://www.prevanders.net/dwarfbug.html#DW201609-002
Fixed by: https://sourceforge.net/p/libdwarf/code/ci/3767305debcba8bd7e1c483ae48c509d25399252
See though notes for CVE-2016-7410, the 3767305debcba8bd7e1c483ae48c509d25399252
seem to be the ultimate fix upstream, introducing commit should as well still be
found.

CVE-2016-7511

CVSS3: 5.5

ubuntu

почти 9 лет назад

Integer overflow in the dwarf_die_deliv.c in libdwarf 20160613 allows remote attackers to cause a denial of service (crash) via a crafted file.

CVE-2016-7511

CVSS3: 3.3

redhat

больше 9 лет назад

Integer overflow in the dwarf_die_deliv.c in libdwarf 20160613 allows remote attackers to cause a denial of service (crash) via a crafted file.

CVE-2016-7511

CVSS3: 5.5

nvd

почти 9 лет назад

Integer overflow in the dwarf_die_deliv.c in libdwarf 20160613 allows remote attackers to cause a denial of service (crash) via a crafted file.

GHSA-xc2x-m4rx-3prr

CVSS3: 5.5

github

больше 3 лет назад

Integer overflow in the dwarf_die_deliv.c in libdwarf 20160613 allows remote attackers to cause a denial of service (crash) via a crafted file.