Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2016-8679

Опубликовано: 15 фев. 2017
Источник: debian

Описание

The _dwarf_get_size_of_val function in libdwarf/dwarf_util.c in Libdwarf before 20161124 allows remote attackers to cause a denial of service (out-of-bounds read) by calling the dwarfdump command on a crafted file.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
dwarfutilsfixed20161001-2package
dwarfutilsno-dsajessiepackage
dwarfutilsno-dsawheezypackage

Примечания

  • https://www.openwall.com/lists/oss-security/2016/10/08/11

  • https://sourceforge.net/p/libdwarf/code/ci/2d14a7792889e33bc542c28d0f3792964c46214f/#diff-13

  • https://sourceforge.net/p/libdwarf/code/ci/efe48cad0693d6994d9a7b561e1c3833b073a624/#diff-2

  • Same fix as CVE-2016-8681 but different issue

Связанные уязвимости

ubuntu логотип

CVE-2016-8679

CVSS3: 6.5
ubuntu
почти 9 лет назад

The _dwarf_get_size_of_val function in libdwarf/dwarf_util.c in Libdwarf before 20161124 allows remote attackers to cause a denial of service (out-of-bounds read) by calling the dwarfdump command on a crafted file.

redhat логотип

CVE-2016-8679

CVSS3: 5.3
redhat
больше 9 лет назад

The _dwarf_get_size_of_val function in libdwarf/dwarf_util.c in Libdwarf before 20161124 allows remote attackers to cause a denial of service (out-of-bounds read) by calling the dwarfdump command on a crafted file.

nvd логотип

CVE-2016-8679

CVSS3: 6.5
nvd
почти 9 лет назад

The _dwarf_get_size_of_val function in libdwarf/dwarf_util.c in Libdwarf before 20161124 allows remote attackers to cause a denial of service (out-of-bounds read) by calling the dwarfdump command on a crafted file.

github логотип

GHSA-c3x9-5mjf-g3qh

CVSS3: 6.5
github
больше 3 лет назад

The _dwarf_get_size_of_val function in libdwarf/dwarf_util.c in Libdwarf before 20161124 allows remote attackers to cause a denial of service (out-of-bounds read) by calling the dwarfdump command on a crafted file.