CVE-2019-19647NULL Pointer Dereference in Radare2

CWE-476NULL Pointer DereferenceCWE-20Improper Input Validation7 documents5 sources
Severity
7.8HIGHNVD
EPSS
0.5%
top 34.39%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Debian Radare2Radare Radare2Fedoraproject Fedora
Timeline
PublishedDec 9
Latest updateMay 24

Description

radare2 through 4.0.0 lacks validation of the content variable in the function r_asm_pseudo_incbin at libr/asm/asm.c, ultimately leading to an arbitrary write. This allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via crafted input.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

debiandebian/radare2< radare2 4.2.1+dfsg-1 (sid)
NVDradare/radare24.0.0

Also affects: Fedora 30, 31

🔴Vulnerability Details

2
GHSA
GHSA-4pc3-99rp-r89j: radare2 through 42022-05-24
OSV
CVE-2019-19647: radare2 through 42019-12-09

📋Vendor Advisories

1
Debian
CVE-2019-19647: radare2 - radare2 through 4.0.0 lacks validation of the content variable in the function r...2019

💬Community

3
Bugzilla
CVE-2019-19647 radare2: improper variable validation in r_asm_pseudo_incbin in libr/asm/asm.c leads to DoS [fedora-all]2019-12-13
Bugzilla
CVE-2019-19647 radare2: improper variable validation in r_asm_pseudo_incbin in libr/asm/asm.c leads to DoS [epel-7]2019-12-13
Bugzilla
CVE-2019-19647 radare2: improper variable validation in r_asm_pseudo_incbin in libr/asm/asm.c leads to DoS2019-12-13