CVE-2016-5030 — NULL Pointer Dereference in Project Libdwarf
Severity
6.5MEDIUMNVD
EPSS
0.6%
top 29.29%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedFeb 17
Latest updateMay 13
Description
The _dwarf_calculate_info_section_end_ptr function in libdwarf before 20160923 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6
Affected Packages1 packages
Patches
🔴Vulnerability Details
3GHSA▶
GHSA-5975-m6xq-24gr: The _dwarf_calculate_info_section_end_ptr function in libdwarf before 20160923 allows remote attackers to cause a denial of service (NULL pointer dere↗2022-05-13
CVEList▶
CVE-2016-5030: The _dwarf_calculate_info_section_end_ptr function in libdwarf before 20160923 allows remote attackers to cause a denial of service (NULL pointer dere↗2017-02-17
OSV▶
CVE-2016-5030: The _dwarf_calculate_info_section_end_ptr function in libdwarf before 20160923 allows remote attackers to cause a denial of service (NULL pointer dere↗2017-02-17
📋Vendor Advisories
2💬Community
3Bugzilla▶
CVE-2016-5028 CVE-2016-5029 CVE-2016-5030 CVE-2016-5031 CVE-2016-5032 CVE-2016-5033 CVE-2016-5034 CVE-2016-5035 CVE-2016-5036 CVE-2016-5038 libdwarf: various flaws [epel-6]↗2016-05-26
Bugzilla▶
CVE-2016-5028 CVE-2016-5029 CVE-2016-5030 CVE-2016-5031 CVE-2016-5032 CVE-2016-5033 CVE-2016-5034 CVE-2016-5035 CVE-2016-5036 CVE-2016-5038 libdwarf: various flaws [fedora-all]↗2016-05-26
Bugzilla▶
CVE-2016-5030 libdwarf: Null pointer dereference in _dwarf_calculate_info_section_end_ptr()↗2016-05-26