CVE-2017-9998

Опубликовано: 28 июн. 2017

Источник: debian

Описание

The _dwarf_decode_s_leb128_chk function in dwarf_leb.c in libdwarf through 2017-06-28 allows remote attackers to cause a denial of service (Segmentation fault) via a crafted file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
dwarfutils	fixed	20170416-3		package
dwarfutils	fixed	20161124-1+deb9u1	stretch	package
dwarfutils	no-dsa		jessie	package
dwarfutils	no-dsa		wheezy	package

Примечания

https://bugzilla.redhat.com/show_bug.cgi?id=1465756

Связанные уязвимости

CVE-2017-9998

CVSS3: 6.5

ubuntu

больше 8 лет назад

The _dwarf_decode_s_leb128_chk function in dwarf_leb.c in libdwarf through 2017-06-28 allows remote attackers to cause a denial of service (Segmentation fault) via a crafted file.

CVE-2017-9998

CVSS3: 3.3

redhat

больше 8 лет назад

The _dwarf_decode_s_leb128_chk function in dwarf_leb.c in libdwarf through 2017-06-28 allows remote attackers to cause a denial of service (Segmentation fault) via a crafted file.

CVE-2017-9998

CVSS3: 6.5

nvd

больше 8 лет назад

The _dwarf_decode_s_leb128_chk function in dwarf_leb.c in libdwarf through 2017-06-28 allows remote attackers to cause a denial of service (Segmentation fault) via a crafted file.

GHSA-26jh-3pw8-9r3f

CVSS3: 6.5

github

больше 3 лет назад

The _dwarf_decode_s_leb128_chk function in dwarf_leb.c in libdwarf through 2017-06-28 allows remote attackers to cause a denial of service (Segmentation fault) via a crafted file.