Libdwarf Project Libdwarf vulnerabilities
45 known vulnerabilities affecting libdwarf_project/libdwarf.
Total CVEs
45
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL6HIGH14MEDIUM24LOW1
Vulnerabilities
Page 2 of 3
CVE-2016-5044HIGHCVSS 7.5≥ 1999-12-14, < 2016-09-232017-02-17
CVE-2016-5044 [HIGH] CWE-787 CVE-2016-5044: The WRITE_UNALIGNED function in dwarf_elf_access.c in libdwarf before 20160923 allows remote attacke
The WRITE_UNALIGNED function in dwarf_elf_access.c in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds write and crash) via a crafted DWARF section.
nvd
CVE-2016-5040HIGHCVSS 7.5≥ 1999-12-14, < 2016-09-232017-02-17
CVE-2016-5040 [HIGH] CWE-125 CVE-2016-5040: libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read an
libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a large length value in a compilation unit header.
nvd
CVE-2016-5036HIGHCVSS 7.5≥ 1999-12-14, < 2016-09-232017-02-17
CVE-2016-5036 [HIGH] CWE-125 CVE-2016-5036: The dump_block function in print_sections.c in libdwarf before 20160923 allows remote attackers to c
The dump_block function in print_sections.c in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read) via crafted frame data.
nvd
CVE-2016-5043HIGHCVSS 7.5≥ 1999-12-14, < 2016-09-232017-02-17
CVE-2016-5043 [HIGH] CWE-125 CVE-2016-5043: The dwarf_dealloc function in libdwarf before 20160923 allows remote attackers to cause a denial of
The dwarf_dealloc function in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted DWARF section.
nvd
CVE-2016-5039HIGHCVSS 7.5≥ 1999-12-14, < 2016-09-232017-02-17
CVE-2016-5039 [HIGH] CWE-125 CVE-2016-5039: The get_attr_value function in libdwarf before 20160923 allows remote attackers to cause a denial of
The get_attr_value function in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted object with all-bits on.
nvd
CVE-2016-5038HIGHCVSS 7.5≥ 1999-12-14, < 2016-09-232017-02-17
CVE-2016-5038 [HIGH] CWE-125 CVE-2016-5038: The dwarf_get_macro_startend_file function in dwarf_macro5.c in libdwarf before 20160923 allows remo
The dwarf_get_macro_startend_file function in dwarf_macro5.c in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted string offset for .debug_str.
nvd
CVE-2016-5037MEDIUMCVSS 6.5≥ 1999-12-14, < 2016-09-232017-02-17
CVE-2016-5037 [MEDIUM] CWE-476 CVE-2016-5037: The _dwarf_load_section function in libdwarf before 20160923 allows remote attackers to cause a deni
The _dwarf_load_section function in libdwarf before 20160923 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
nvd
CVE-2016-5033MEDIUMCVSS 6.5≥ 1999-12-14, < 2016-09-232017-02-17
CVE-2016-5033 [MEDIUM] CWE-125 CVE-2016-5033: The print_exprloc_content function in libdwarf before 20160923 allows remote attackers to cause a de
The print_exprloc_content function in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file.
nvd
CVE-2016-7511MEDIUMCVSS 5.5v2016-06-132017-02-17
CVE-2016-7511 [MEDIUM] CWE-190 CVE-2016-7511: Integer overflow in the dwarf_die_deliv.c in libdwarf 20160613 allows remote attackers to cause a de
Integer overflow in the dwarf_die_deliv.c in libdwarf 20160613 allows remote attackers to cause a denial of service (crash) via a crafted file.
nvd
CVE-2016-5035MEDIUMCVSS 6.5≥ 1999-12-14, < 2016-09-232017-02-17
CVE-2016-5035 [MEDIUM] CWE-125 CVE-2016-5035: The _dwarf_read_line_table_header function in dwarf_line_table_reader.c in libdwarf before 20160923
The _dwarf_read_line_table_header function in dwarf_line_table_reader.c in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file.
nvd
CVE-2016-5030MEDIUMCVSS 6.5≥ 1999-12-14, < 2016-09-232017-02-17
CVE-2016-5030 [MEDIUM] CWE-476 CVE-2016-5030: The _dwarf_calculate_info_section_end_ptr function in libdwarf before 20160923 allows remote attacke
The _dwarf_calculate_info_section_end_ptr function in libdwarf before 20160923 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
nvd
CVE-2016-5029MEDIUMCVSS 6.5≥ 1999-12-14, < 2016-09-232017-02-17
CVE-2016-5029 [MEDIUM] CWE-476 CVE-2016-5029: The create_fullest_file_path function in libdwarf before 20160923 allows remote attackers to cause a
The create_fullest_file_path function in libdwarf before 20160923 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted dwarf file.
nvd
CVE-2016-5028MEDIUMCVSS 6.5≥ 1999-12-14, < 2016-09-232017-02-17
CVE-2016-5028 [MEDIUM] CWE-476 CVE-2016-5028: The print_frame_inst_bytes function in libdwarf before 20160923 allows remote attackers to cause a d
The print_frame_inst_bytes function in libdwarf before 20160923 allows remote attackers to cause a denial of service (NULL pointer dereference) via an object file with empty bss-like sections.
nvd
CVE-2016-5032MEDIUMCVSS 6.5≥ 1999-12-14, < 2016-09-232017-02-17
CVE-2016-5032 [MEDIUM] CWE-125 CVE-2016-5032: The dwarf_get_xu_hash_entry function in libdwarf before 20160923 allows remote attackers to cause a
The dwarf_get_xu_hash_entry function in libdwarf before 20160923 allows remote attackers to cause a denial of service (crash) via a crafted file.
nvd
CVE-2016-5031MEDIUMCVSS 5.5≥ 1999-12-14, < 2016-09-232017-02-17
CVE-2016-5031 [MEDIUM] CWE-125 CVE-2016-5031: The print_frame_inst_bytes function in libdwarf before 20160923 allows remote attackers to cause a d
The print_frame_inst_bytes function in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file.
nvd
CVE-2016-7510MEDIUMCVSS 6.5≥ 1999-12-14, < 2016-09-232017-02-17
CVE-2016-7510 [MEDIUM] CWE-125 CVE-2016-7510: The read_line_table_program function in dwarf_line_table_reader_common.c in libdwarf before 20160923
The read_line_table_program function in dwarf_line_table_reader_common.c in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read) via crafted input.
nvd
CVE-2016-5034MEDIUMCVSS 6.5≥ 1999-12-14, < 2016-09-232017-02-17
CVE-2016-5034 [MEDIUM] CWE-787 CVE-2016-5034: dwarf_elf_access.c in libdwarf before 20160923 allows remote attackers to cause a denial of service
dwarf_elf_access.c in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted file, related to relocation records.
nvd
CVE-2016-8679MEDIUMCVSS 6.5≥ 1999-12-14, < 2016-11-242017-02-15
CVE-2016-8679 [MEDIUM] CWE-125 CVE-2016-8679: The _dwarf_get_size_of_val function in libdwarf/dwarf_util.c in Libdwarf before 20161124 allows remo
The _dwarf_get_size_of_val function in libdwarf/dwarf_util.c in Libdwarf before 20161124 allows remote attackers to cause a denial of service (out-of-bounds read) by calling the dwarfdump command on a crafted file.
nvd
CVE-2016-8680MEDIUMCVSS 6.5≥ 1999-12-14, ≤ 2016-10-012017-02-15
CVE-2016-8680 [MEDIUM] CWE-125 CVE-2016-8680: The _dwarf_get_abbrev_for_code function in dwarf_util.c in libdwarf 20161001 and earlier allows remo
The _dwarf_get_abbrev_for_code function in dwarf_util.c in libdwarf 20161001 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) by calling the dwarfdump command on a crafted file.
nvd
CVE-2016-8681MEDIUMCVSS 5.5≤ 2016-10-012017-02-15
CVE-2016-8681 [MEDIUM] CWE-125 CVE-2016-8681: The _dwarf_get_abbrev_for_code function in dwarf_util.c in libdwarf 20161001 and earlier allows remo
The _dwarf_get_abbrev_for_code function in dwarf_util.c in libdwarf 20161001 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) by calling the dwarfdump command on a crafted file.
nvd