Note:
This project will be discontinued after December 13, 2021. [more]
2018-12-25
In radare2 prior to 3.1.1, core_anal_bytes in libr/core/cmd_anal.c allows attackers to cause a denial-of-service (application crash caused by out-of-bounds read) by crafting a binary file.
Products | Radare2 |
Type | Out-of-bounds Read (CWE-125) |
First patch |
https://github.com/radare/radare2/commit/a1bc65c3db593530775823d6d7506a457ed95267 |
Relevant file/s | ./libr/core/cmd_anal.c (modified, +11, -5) |
Links | https://github.com/radare/radare2/issues/12375 |
Navigation
Patch data:
Patched area:
(on by default)
Patched area: