Lucene search

Veracode Vulnerability DatabaseVERACODE:38630

HistoryDec 26, 2022 - 2:27 a.m.

Denial Of Service (DoS)

2022-12-2602:27:56

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

radare2

vulnerability

denial of service

out-of-bounds read

application crash

malicious input

EPSS

0.001

Percentile

47.5%

JSON

radare2 is vulnerable to denial of service. The vulnerability exists due to the out-of-bounds read in the library, allowing an attacker to cause an application crash by providing a maliciously crafted input.

References

github.com/radareorg/radare2/commit/37897226a1a31f982bfefdc4aeefc2e50355c73c

huntr.dev/bounties/727d8600-88bc-4dde-8dea-ee3d192600e5

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IQIRJ72UALGMSWH6MYPVJQQLXFGZ23RS/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SKGIB52R4XPCPNEW6GF56EHW7ST24IJU/

lists.fedoraproject.org/archives/list/[email protected]/message/IQIRJ72UALGMSWH6MYPVJQQLXFGZ23RS/

lists.fedoraproject.org/archives/list/[email protected]/message/SKGIB52R4XPCPNEW6GF56EHW7ST24IJU/

secdb.alpinelinux.org/edge/community.yaml

EPSS

0.001

Percentile

47.5%

JSON

Related for VERACODE:38630