VDB
CVE-2016-9480
CVE-2016-9480
PUBLISHED
libdwarf 2016-10-21 allows context-dependent attackers to obtain sensitive information or cause a denial of service by using the "malformed dwarf file" approach, related to a "Heap Buffer Over-read" issue affecting the dwarf_util.c component, aka DW201611-006.
EPSS 0.44% · 63.3th percentile
Risk Scores
EPSS Score
0.44%
63.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:16.04:LTS | dwarfutils | 0, 20120410-2, * |
Timeline
- Nov 29, 2016 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 8, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 16, 2023 EPSS Score
References
- https://ubuntu.com/security/CVE-2016-9480 third-party-advisory
- https://sourceforge.net/p/libdwarf/bugs/5/ third-party-advisory
- https://sourceforge.net/p/libdwarf/code/ci/5dd64de047cd5ec479fb11fe7ff2692fd819e5e5/ third-party-advisory
- https://www.prevanders.net/dwarfbug.html third-party-advisory
- https://www.cve.org/CVERecord?id=CVE-2016-9480 third-party-advisory