Known Vulnerabilities for Libdwarf by Libdwarf Project

Listed below are 10 of the newest known vulnerabilities associated with "Libdwarf" by "Libdwarf Project".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE	Shortened Description	Severity	Publish Date	Last Modified
CVE-2020-28163	libdwarf before 20201201 allows a dwarf_print_lines.c NULL pointer dereference and application crash via a DWARF5 line-table ...	6.5 - MEDIUM	2023-04-16	2023-04-26
CVE-2020-27545	libdwarf before 20201017 has a one-byte out-of-bounds read because of an invalid pointer dereference via an invalid line tabl...	6.5 - MEDIUM	2023-04-16	2023-04-26
CVE-2019-14249	dwarf_elf_load_headers.c in libdwarf before 2019-07-05 allows attackers to cause a denial of service (division by zero) via a...	6.5 - MEDIUM	2019-07-24	2019-08-05
CVE-2017-9998	The _dwarf_decode_s_leb128_chk function in dwarf_leb.c in libdwarf through 2017-06-28 allows remote attackers to cause a deni...	6.5 - MEDIUM	2017-06-28	2022-03-01
CVE-2017-9055	An issue, also known as DW201703-001, was discovered in libdwarf 2017-03-21. In dwarf_formsdata() a few data types were not c...	9.8 - CRITICAL	2017-05-18	2022-03-01
CVE-2017-9054	An issue, also known as DW201703-002, was discovered in libdwarf 2017-03-21. In _dwarf_decode_s_leb128_chk() a byte pointer w...	9.8 - CRITICAL	2017-05-18	2022-03-01
CVE-2017-9053	An issue, also known as DW201703-005, was discovered in libdwarf 2017-03-21. A heap-based buffer over-read in _dwarf_read_loc...	9.1 - CRITICAL	2017-05-18	2022-03-01
CVE-2017-9052	An issue, also known as DW201703-006, was discovered in libdwarf 2017-03-21. A heap-based buffer over-read in dwarf_formsdata...	9.8 - CRITICAL	2017-05-18	2019-10-18
CVE-2016-2091	The dwarf_read_cie_fde_prefix function in dwarf_frame2.c in libdwarf 20151114 allows attackers to cause a denial of service (...	3.3 - LOW	2016-02-08	2019-10-02
CVE-2016-2050	The get_abbrev_array_info function in libdwarf-20151114 allows remote attackers to cause a denial of service (out-of-bounds w...	6.5 - MEDIUM	2017-01-31	2022-03-01

Results limited to 10 most recent vulnerabilities

Known Affected Configurations (CPE V2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Libdwarf Project	Libdwarf	2019-10-02	All	All	All
Application	Libdwarf Project	Libdwarf	2019-07-05	All	All	All
Application	Libdwarf Project	Libdwarf	2019-05-29	All	All	All
Application	Libdwarf Project	Libdwarf	2019-05-05	All	All	All
Application	Libdwarf Project	Libdwarf	2019-01-10	All	All	All
Application	Libdwarf Project	Libdwarf	2019-01-04	All	All	All
Application	Libdwarf Project	Libdwarf	2019-01-02	All	All	All
Application	Libdwarf Project	Libdwarf	2018-10-24	All	All	All
Application	Libdwarf Project	Libdwarf	2018-08-09	All	All	All
Application	Libdwarf Project	Libdwarf	2018-08-07	All	All	All
Application	Libdwarf Project	Libdwarf	2018-08-06	All	All	All
Application	Libdwarf Project	Libdwarf	2018-08-05	All	All	All
Application	Libdwarf Project	Libdwarf	2018-08-04	All	All	All
Application	Libdwarf Project	Libdwarf	2018-08-02	All	All	All
Application	Libdwarf Project	Libdwarf	2018-07-31	All	All	All
Application	Libdwarf Project	Libdwarf	2018-07-30	All	All	All
Application	Libdwarf Project	Libdwarf	2018-07-24	All	All	All
Application	Libdwarf Project	Libdwarf	2018-07-23	All	All	All
Application	Libdwarf Project	Libdwarf	2018-07-22	All	All	All
Application	Libdwarf Project	Libdwarf	2018-07-21	All	All	All

Results limited to 20 most recent known configurations