CVE-2018-14016

2018-07-1220:29:00

Google

osv.dev

AI Score

Confidence

High

EPSS

0.002

Percentile

57.7%

JSON

The r_bin_mdmp_init_directory_entry function in mdmp.c in radare2 2.7.0 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted Mini Crash Dump file.

References

github.com/radare/radare2/issues/10464

github.com/radareorg/radare2/commit/eb7deb281df54771fb8ecf5890dc325a7d22d3e2