Description

Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.9.0.

Related CPE's

a

radare

radare2

Vulnerable

o

fedoraproject

fedora

2

References

https://github.com/radareorg/radare2/commit/ba919adb74ac368bf76b150a00347ded78b572dd

Patch

https://huntr.dev/bounties/06e2484c-d6f1-4497-af67-26549be9fffd

ExploitPatchThird Party Advisory

https://lists.fedoraproject.org/archives/list/[email protected]/message/64KUV6OGEVQ75QOV35PUVVDOJTKSJHYN/

Mailing ListThird Party Advisory

https://lists.fedoraproject.org/archives/list/[email protected]/message/SOZ6XCADVAPAIHMVSV3FUAN742BHXF55/

Mailing ListThird Party Advisory

Weaknesses

[email protected]

Primary
CWE-787

[email protected]

Secondary
CWE-122

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.8 · Critical

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2023-08-14T16:15:09.497

11 months ago

Last modified

2024-01-21T03:03:06.933

6 months ago