CVE-2016-5029

CVE-2016-5029

EPSS 2.9%

The create_fullest_file_path function in libdwarf before 20160923 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted dwarf file.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.prevanders.net/dwarfbug.html http://www.openwall.com/lists/oss-security/2016/05/24/1 http://www.openwall.com/lists/oss-security/2016/05/25/1