PT-2017-10205 · None · Libdwarf

Published

2017-02-28

Updated

2022-03-01

CVE-2016-9558

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions libdwarf versions prior to 20161124

Description The issue is related to a "negation overflow" caused by a crafted bit pattern in a signed leb number. This can be exploited by remote attackers to have an unspecified impact. The problem lies in the dwarf leb.c and print frames.c files of the libdwarf library.

Recommendations For libdwarf versions prior to 20161124, update to version 20161124 or later to resolve the issue.

Exploit

Fix

Integer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-190

Related Identifiers

CVE-2016-9558

Affected Products

Libdwarf

PT-2017-10205 · None · Libdwarf

CVE-2016-9558

Weakness Enumeration

Related Identifiers

Affected Products

References · 13