PT-2017-10205 · None · Libdwarf

Publicado

2017-02-28

Atualizado

2022-03-01

CVE-2016-9558

CVSS v3.1

9.8

Crítica

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions libdwarf versions prior to 20161124

Description The issue is related to a "negation overflow" caused by a crafted bit pattern in a signed leb number. This can be exploited by remote attackers to have an unspecified impact. The problem lies in the dwarf leb.c and print frames.c files of the libdwarf library.

Recommendations For libdwarf versions prior to 20161124, update to version 20161124 or later to resolve the issue.

Exploit

Correção

Integer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-190

Identificadores relacionados

CVE-2016-9558

Produtos afetados

Libdwarf

PT-2017-10205 · None · Libdwarf

CVE-2016-9558

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 13