CVE-2017-15931 — Out-of-bounds Read in Radare2

CWE-125 — Out-of-bounds Read4 documents4 sources

Severity

7.8HIGHNVD

EPSS

0.2%

top 57.14%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Radare Radare2 Debian Radare2

Timeline

PublishedOct 27

Latest updateMay 17

Description

In radare2 2.0.1, an integer exception (negative number leading to an invalid memory access) exists in store_versioninfo_gnu_verneed() in libr/bin/format/elf/elf.c via crafted ELF files on 32bit systems.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages3 packages

▶debiandebian/radare2< radare2 2.1.0+dfsg-1 (sid)

▶Ubunturadare/radare2< 2.3.0+dfsg-2

▶NVDradare/radare22.0.1

Patches

Patch: github.com ↗Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

GHSA

GHSA-9rrf-xh99-j7p6: In radare2 2↗2022-05-17

▶

OSV

CVE-2017-15931: In radare2 2↗2017-10-27

▶

📋Vendor Advisories

Debian

CVE-2017-15931: radare2 - In radare2 2.0.1, an integer exception (negative number leading to an invalid me...↗2017

▶