« List of all CVEs

CVE-2017-9054

Published: 5/18/2017 Last updated: 8/5/2024 Reserved: 5/18/2017

An issue, also known as DW201703-002, was discovered in libdwarf 2017-03-21. In _dwarf_decode_s_leb128_chk() a byte pointer was dereferenced just before it was checked for being in bounds, leading to a heap-based buffer over-read.

CNA assigner: mitre (8254265b-2729-46b6-b9e3-3dfca2d5bfca) Requested by: n/a

Opam packages affected (1)

conf-dwarfutils

Products affected (1)

Product Vendor Version
n/a n/a < 1.5.0

References (4)