Search CVE reports
1 – 8 of 8 results
CVE-2024-31636
Medium priorityAn issue in LIEF v.0.14.1 allows a local attacker to obtain sensitive information via the name parameter of the machd_reader.c component.
1 affected package
lief
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
lief | Not in release | Needs evaluation | Needs evaluation | — | — |
CVE-2022-40922
Medium priorityA vulnerability in the LIEF::MachO::BinaryParser::init_and_parse function of LIEF v0.12.1 allows attackers to cause a denial of service (DOS) through a segmentation fault via a crafted MachO file.
1 affected package
lief
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
lief | Not in release | Not affected | Not affected | Not in release | Ignored |
CVE-2022-38497
Medium priorityLIEF commit 365a16a was discovered to contain a segmentation violation via the component CoreFile.tcc:69.
1 affected package
lief
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
lief | Not in release | Needs evaluation | Needs evaluation | Not in release | Ignored |
CVE-2022-38496
Medium priorityLIEF commit 365a16a was discovered to contain a reachable assertion abort via the component BinaryStream.hpp.
1 affected package
lief
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
lief | Not in release | Needs evaluation | Needs evaluation | Not in release | Ignored |
CVE-2022-38495
Medium priorityLIEF commit 365a16a was discovered to contain a heap-buffer overflow via the function print_binary at /c/macho_reader.c.
1 affected package
lief
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
lief | Not in release | Needs evaluation | Needs evaluation | Not in release | Ignored |
CVE-2022-38307
Medium priorityLIEF commit 5d1d643 was discovered to contain a segmentation violation via the function LIEF::MachO::SegmentCommand::file_offset() at /MachO/SegmentCommand.cpp.
1 affected package
lief
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
lief | Not in release | Needs evaluation | Needs evaluation | Not in release | Ignored |
CVE-2022-38306
Medium priorityLIEF commit 5d1d643 was discovered to contain a heap-buffer overflow in the component /core/CorePrPsInfo.tcc.
1 affected package
lief
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
lief | Not in release | Needs evaluation | Needs evaluation | Not in release | Ignored |
CVE-2021-32297
Medium priorityAn issue was discovered in LIEF through 0.11.4. A heap-buffer-overflow exists in the function main located in pe_reader.c. It allows an attacker to cause code Execution.
1 affected package
lief
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
lief | Not in release | Vulnerable | Vulnerable | Not in release | Ignored |