Critical severity9.8NVD Advisory· Published May 18, 2017· Updated May 13, 2026
CVE-2017-9052
CVE-2017-9052
Description
An issue, also known as DW201703-006, was discovered in libdwarf 2017-03-21. A heap-based buffer over-read in dwarf_formsdata() is due to a failure to check a pointer for being in bounds (in a few places in this function) and a failure in a check in dwarf_attr_list().
Affected products
1- cpe:2.3:a:libdwarf_project:libdwarf:2017-03-21:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- www.securityfocus.com/bid/98553nvdThird Party AdvisoryVDB Entry
- www.prevanders.net/dwarfbug.htmlnvdThird Party Advisory
News mentions
0No linked articles in our index yet.