CVE-2016-5042 in libdwarfinfo

Summary

The dwarf_get_aranges_list function in libdwarf before 20160923 allows remote attackers to cause a denial of service (infinite loop and crash) via a crafted DWARF section.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

05/24/2016

Disclosure

02/17/2017

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-399

CVSS

6.4

EPSS

0.00993

CTI

0.00

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-5042
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-5042
CVE Details	https://www.cvedetails.com/cve/CVE-2016-5042/

◂ Previous Overview Next ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!