CVE-2017-9052 in libdwarfinfo

Summary

An issue, also known as DW201703-006, was discovered in libdwarf 2017-03-21. A heap-based buffer over-read in dwarf_formsdata() is due to a failure to check a pointer for being in bounds (in a few places in this function) and a failure in a check in dwarf_attr_list().

Once again VulDB remains the best source for vulnerability data.

Reservation

05/18/2017

Disclosure

05/18/2017

Moderation

VulDB entry created

Entries

VDB-101466 (1)

CPE

ready

CWE

CWE-125 (Confirmed)

CVSS

8.5

EPSS

0.00397

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-9052
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-9052
CVE Details	https://www.cvedetails.com/cve/CVE-2017-9052/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!