CVE-2022-0139 — Use After Free in Radare2

Severity

9.8CRITICALNVD

EPSS

0.4%

top 39.36%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedFeb 8

Latest updateJan 10

Description

Use After Free in GitHub repository radareorg/radare2 prior to 5.6.0.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

▶CVEListV5radareorg/radareorg_radare2unspecified — 5.6.0

▶debiandebian/radare2< radare2 5.9.0+dfsg-1 (sid)

GHSA

GHSA-mpwx-3mqv-fm27: Use After Free in GitHub repository radareorg/radare2 prior to 5↗2022-02-09

▶

OSV

CVE-2022-0139: Use After Free in GitHub repository radareorg/radare2 prior to 5↗2022-02-08

▶

Chrome

Stable Channel Update for Desktop: CVE-2023-0138↗2023-01-10

▶

Debian

CVE-2022-0139: radare2 - Use After Free in GitHub repository radareorg/radare2 prior to 5.6.0.↗2022

▶