CVE-2024-31745

Опубликовано: 19 апр. 2024

Источник: nvd

Описание

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-2002. Reason: This candidate is a duplicate of CVE-2024-2002. Notes: All CVE users should reference CVE-2024-2002 instead of this candidate.

Связанные уязвимости

CVE-2024-31745

CVSS3: 5.5

redhat

почти 2 года назад

A flaw was found in libdwarf. An attacker may use a specially-crafted file to trigger a use-after-free condition, which can potentially lead to an application crash or other unexpected behavior.

CVE-2024-31745

msrc

10 месяцев назад

Описание отсутствует

GHSA-8h8h-h8wv-7f3f

github

почти 2 года назад

Libdwarf v0.9.1 was discovered to contain a heap use-after-free via the dw_empty_errlist_item function at /libdwarf/dwarf_alloc.c.