Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2016-8680

Опубликовано: 15 фев. 2017
Источник: debian
EPSS Низкий

Описание

The _dwarf_get_abbrev_for_code function in dwarf_util.c in libdwarf 20161001 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) by calling the dwarfdump command on a crafted file.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
dwarfutilsfixed20161001-2package
dwarfutilsno-dsajessiepackage
dwarfutilsno-dsawheezypackage

Примечания

  • https://www.openwall.com/lists/oss-security/2016/10/08/12

  • https://sourceforge.net/p/libdwarf/code/ci/268c1f18d1d28612af3b72d7c670076b1b88e51c/tree/libdwarf/dwarf_util.c?diff=0b28b923c3bd9827d1d904feed2abadde4fa5de2

EPSS

Процентиль: 73%
0.00768
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2016-8680

CVSS3: 6.5
ubuntu
почти 9 лет назад

The _dwarf_get_abbrev_for_code function in dwarf_util.c in libdwarf 20161001 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) by calling the dwarfdump command on a crafted file.

redhat логотип

CVE-2016-8680

CVSS3: 5.3
redhat
больше 9 лет назад

The _dwarf_get_abbrev_for_code function in dwarf_util.c in libdwarf 20161001 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) by calling the dwarfdump command on a crafted file.

nvd логотип

CVE-2016-8680

CVSS3: 6.5
nvd
почти 9 лет назад

The _dwarf_get_abbrev_for_code function in dwarf_util.c in libdwarf 20161001 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) by calling the dwarfdump command on a crafted file.

github логотип

GHSA-7m38-hj27-q9wr

CVSS3: 6.5
github
больше 3 лет назад

The _dwarf_get_abbrev_for_code function in dwarf_util.c in libdwarf 20161001 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) by calling the dwarfdump command on a crafted file.

EPSS

Процентиль: 73%
0.00768
Низкий