NVD

Id
86179  
Name
CVE-2017-9052  
Description
An issue, also known as DW201703-006, was discovered in libdwarf 2017-03-21. A heap-based buffer over-read in dwarf_formsdata() is due to a failure to check a pointer for being in bounds (in a few places in this function) and a failure in a check in dwarf_attr_list().  
Reject
 
CVSS Version
2  
CVSS Score
7.5  
Severity
High  
CVSS Base Score
7.5  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:P/A:P)  
Pub Date
2017-05-27  
Published
2017-05-18  
Modified Date
2017-05-24  
Seq
2017-9052  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
422810 86179 CVE-2017-0608 98172  View
422811 86179 CVE-2017-0608 https://source.android.com/security/bulletin/2017-05-01  View
422812 86179 CVE-2017-0608 98172  View
422813 86179 CVE-2017-0608 https://source.android.com/security/bulletin/2017-05-01  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
67832 JVNDB-2017-004121 libdwarf におけるバッファエラーの脆弱性 libdwarf には、バッファエラーの脆弱性、および境界外読み取りに関する脆弱性が存在します。 CVE-2017-9052 0 CVE-2017-9052 86179 7.5 9.8 http://jvndb.jvn.jp/ja/contents/2017/JVNDB-2017-004121.html 2017-03-21 2017-06-16 View