Описание
There is a heap-based buffer over-read in libdwarf 0.4.0. This issue is related to dwarf_global_formref_b.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| dwarfutils | fixed | 1:0.11.1-1~exp1 | experimental | package |
| dwarfutils | fixed | 1:0.11.1-1 | package | |
| dwarfutils | ignored | bookworm | package | |
| dwarfutils | no-dsa | bullseye | package | |
| dwarfutils | no-dsa | buster | package | |
| dwarfutils | no-dsa | stretch | package |
Примечания
https://github.com/davea42/libdwarf-code/commit/7ef09e1fc9ba07653dd078edb2408631c7969162 (libdwarf-0.4.1)
https://github.com/davea42/libdwarf-code/issues/119
https://www.prevanders.net/dwarfbug.html#DW202206-001
EPSS
Процентиль: 45%
0.00227
Низкий
Связанные уязвимости
CVSS3: 8.1
ubuntu
больше 3 лет назад
There is a heap-based buffer over-read in libdwarf 0.4.0. This issue is related to dwarf_global_formref_b.
CVSS3: 7.1
redhat
больше 3 лет назад
There is a heap-based buffer over-read in libdwarf 0.4.0. This issue is related to dwarf_global_formref_b.
CVSS3: 8.1
nvd
больше 3 лет назад
There is a heap-based buffer over-read in libdwarf 0.4.0. This issue is related to dwarf_global_formref_b.
CVSS3: 8.1
github
больше 3 лет назад
There is a heap-based buffer over-read in libdwarf 0.4.0. This issue is related to dwarf_global_formref_b.
EPSS
Процентиль: 45%
0.00227
Низкий