CVE-2016-9275

Опубликовано: 23 мар. 2017

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

Heap-based buffer overflow in the _dwarf_skim_forms function in libdwarf/dwarf_macro5.c in Libdwarf before 20161124 allows remote attackers to cause a denial of service (out-of-bounds read).

Ссылки

http://www.openwall.com/lists/oss-security/2016/11/11/7
Mailing List
Patch
Third Party Advisory
http://www.securityfocus.com/bid/94284
Third Party Advisory
VDB Entry
https://blogs.gentoo.org/ago/2016/11/07/libdwarf-heap-based-buffer-overflow-in-_dwarf_skim_forms-dwarf_macro5-c
Issue Tracking
Patch
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1394802
Issue Tracking
Patch
https://sourceforge.net/p/libdwarf/code/ci/583f8834083b5ef834c497f5b47797e16101a9a6/
Issue Tracking
Patch
Third Party Advisory
http://www.openwall.com/lists/oss-security/2016/11/11/7
Mailing List
Patch
Third Party Advisory
http://www.securityfocus.com/bid/94284
Third Party Advisory
VDB Entry
https://blogs.gentoo.org/ago/2016/11/07/libdwarf-heap-based-buffer-overflow-in-_dwarf_skim_forms-dwarf_macro5-c
Issue Tracking
Patch
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1394802
Issue Tracking
Patch
https://sourceforge.net/p/libdwarf/code/ci/583f8834083b5ef834c497f5b47797e16101a9a6/
Issue Tracking
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:libdwarf_project:libdwarf:*:*:*:*:*:*:*:*

Версия от 1999-12-14 (включая) до 2016-11-24 (исключая)

EPSS

Процентиль: 72%

0.00711

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-787

Связанные уязвимости

CVE-2016-9275

CVSS3: 7.5

ubuntu

почти 9 лет назад

Heap-based buffer overflow in the _dwarf_skim_forms function in libdwarf/dwarf_macro5.c in Libdwarf before 20161124 allows remote attackers to cause a denial of service (out-of-bounds read).

CVE-2016-9275

CVSS3: 3.3

redhat

около 9 лет назад

Heap-based buffer overflow in the _dwarf_skim_forms function in libdwarf/dwarf_macro5.c in Libdwarf before 20161124 allows remote attackers to cause a denial of service (out-of-bounds read).

CVE-2016-9275

CVSS3: 7.5

debian

почти 9 лет назад

Heap-based buffer overflow in the _dwarf_skim_forms function in libdwa ...

GHSA-qj22-f6jq-h2fw

CVSS3: 7.5

github

больше 3 лет назад

Heap-based buffer overflow in the _dwarf_skim_forms function in libdwarf/dwarf_macro5.c in Libdwarf before 20161124 allows remote attackers to cause a denial of service (out-of-bounds read).

EPSS

Процентиль: 72%

0.00711

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-787