Medium severity5.5NVD Advisory· Published Feb 24, 2017· Updated May 13, 2026

CVE-2016-4491

Description

The d_print_comp function in cp-demangle.c in libiberty allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted binary, which triggers infinite recursion and a buffer overflow, related to a node having "itself as ancestor more than once."

Affected products

GNU/Libiberty
cpe:2.3:a:gnu:libiberty:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.openwall.com/lists/oss-security/2016/05/05/5nvdMailing ListPatchThird Party Advisory
gcc.gnu.org/ml/gcc-patches/2016-05/msg00105.htmlnvdPatchVendor Advisory
gcc.gnu.org/bugzilla/show_bug.cginvdIssue Tracking
www.securityfocus.com/bid/90016nvd

News mentions

No linked articles in our index yet.

cvss	0.358
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000