{"id":"CVE-2016-5030","details":"The _dwarf_calculate_info_section_end_ptr function in libdwarf before 20160923 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.","modified":"2026-06-18T03:55:31.684930225Z","published":"2017-02-17T17:59:00.280Z","database_specific":{"unresolved_ranges":[{"cpes":["cpe:2.3:a:libdwarf_project:libdwarf:*:*:*:*:*:*:*:*"],"vendor_product":"libdwarf_project:libdwarf","extracted_events":[{"introduced":"1999-12-14"},{"fixed":"2016-09-23"}],"source":"CPE_RANGE"}]},"references":[{"type":"ADVISORY","url":"https://www.prevanders.net/dwarfbug.html"},{"type":"FIX","url":"http://www.openwall.com/lists/oss-security/2016/05/24/1"},{"type":"EVIDENCE","url":"http://www.openwall.com/lists/oss-security/2016/05/25/1"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/davea42/libdwarf-code","events":[{"introduced":"0"},{"fixed":"a2b2d14bdc005a5082463d4f68c106a7044efe8c"}],"database_specific":{"extracted_events":[{"introduced":"0"},{"fixed":"20160923"}],"source":"DESCRIPTION"}}],"versions":["20160613","20160507","20160116","20151114","20150915","20150913","20150507","20150310","20150115","20150112","20140805","20140519","20140413","20140208","20140131","20130729-b","20130729","20130207","20130126","20130125","20121130","20121127","20120410","20111214","20111030","20111009","20110908","20110612","20110607","20110605","20110113"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-5030.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}]}