pkg:PyPI/lief

All known vulnerabilities

• HIGH8.8CVE-2021-32297LIEF heap-buffer-overflow
  from 0, < 0.11.0
• HIGH8.8CVE-2021-32297LIEF heap-buffer-overflow
  from 0, < 0.11.5
• HIGH7.8CVE-2022-38495LIEF vulnerable to heap based buffer overflow via print_binary function
  from 0, <= 0.12.1
• HIGH7.8CVE-2022-38495LIEF vulnerable to heap based buffer overflow via print_binary function
  from 0, < 0.12.1
• MEDIUM6.5CVE-2022-43171LIEF heap buffer overflow in the LIEF::MachO::BinaryParser::parse_dyldinfo_generic_bind
  from 0, < 0.12.3
• MEDIUM6.5CVE-2022-43171LIEF heap buffer overflow in the LIEF::MachO::BinaryParser::parse_dyldinfo_generic_bind
  from 0, < 0.12.3
• MEDIUM6.5CVE-2022-40922LIEF vulnerable to denial of service through segmentation fault
  from 0, < 0.12.2
• MEDIUM6.5CVE-2022-40922LIEF vulnerable to denial of service through segmentation fault
  from 0, < 0.12.2
• MEDIUM6.5CVE-2022-40923LIEF vulnerable to denial of service through segmentation fault
  from 0, <= 0.12.1
• MEDIUM6.5CVE-2022-40923LIEF vulnerable to denial of service through segmentation fault
  from 0, <= 0.12.1
• MEDIUM5.5CVE-2022-38497LIEF contains a segmentation violation
  from 0, <= 0.12.1
• MEDIUM5.5CVE-2022-38306LIEF vulnerable to heap based buffer overflow
  from 0, <= 0.12.1
• MEDIUM5.5CVE-2022-38307LIEF contains segmentation violation
  from 0, < 0.12.1
• MEDIUM5.5CVE-2022-38307LIEF contains segmentation violation
  from 0, < 0.12.1
• MEDIUM5.5CVE-2022-38497LIEF contains a segmentation violation
  from 0, < 0.12.1
• MEDIUM5.5CVE-2022-38306LIEF vulnerable to heap based buffer overflow
  from 0, < 0.12.1
• MEDIUM5.5CVE-2022-38496LIEF commit 365a16a was discovered to contain a reachable assertion abort via the component BinaryStream.hpp.
  from 0, < 0.12.2
• LOW3.9CVE-2024-31636LIEF obtain sensitive information via the name parameter
  from 0, <= 0.14.1
• LOW3.9CVE-2024-31636LIEF obtain sensitive information via the name parameter
  from 0, < 0.15.0
• LOW3.3CVE-2025-15504LIEF is vulnerable to segmentation fault
  from 0, < 0.17.2