CVE-2020-27545

Опубликовано: 22 нояб. 2021

Источник: redhat

CVSS3: 6.5

Описание

libdwarf before 20201017 has a one-byte out-of-bounds read because of an invalid pointer dereference via an invalid line table in a crafted object.

A flaw was found in libdwarf. A possible memory leak allows an attacker to input a specially crafted file, leading to a crash. The highest threat from this vulnerability is to system availability.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 7	libdwarf	Out of support scope
Red Hat Enterprise Linux 8	libdwarf	Will not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-125

https://bugzilla.redhat.com/show_bug.cgi?id=2026683libdwarf: carefully corrupted line table can crash calling app

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2020-27545

CVSS3: 6.5

ubuntu

почти 3 года назад

libdwarf before 20201017 has a one-byte out-of-bounds read because of an invalid pointer dereference via an invalid line table in a crafted object.

CVE-2020-27545

CVSS3: 6.5

nvd

почти 3 года назад

libdwarf before 20201017 has a one-byte out-of-bounds read because of an invalid pointer dereference via an invalid line table in a crafted object.

CVE-2020-27545

CVSS3: 6.5

msrc

5 месяцев назад

libdwarf before 20201017 has a one-byte out-of-bounds read because of an invalid pointer dereference via an invalid line table in a crafted object.

CVE-2020-27545

CVSS3: 6.5

debian

почти 3 года назад

libdwarf before 20201017 has a one-byte out-of-bounds read because of ...

SUSE-SU-2023:2784-1

suse-cvrf

больше 2 лет назад

Security update for libdwarf

6.5 Medium

CVSS3