Radare Radare2 vulnerabilities

CVE-2024-29645 [HIGH] CWE-120 CVE-2024-29645: Buffer Overflow vulnerability in radarorg radare2 v.5.8.8 allows an attacker to execute arbitrary co Buffer Overflow vulnerability in radarorg radare2 v.5.8.8 allows an attacker to execute arbitrary code via the parse_die function.

CVE-2024-48241 [MEDIUM] CWE-787 CVE-2024-48241: An issue in radare2 v5.8.0 through v5.9.4 allows a local attacker to cause a denial of service via t An issue in radare2 v5.8.0 through v5.9.4 allows a local attacker to cause a denial of service via the __bf_div function.

CVE-2024-26475 [MEDIUM] CWE-476 CVE-2024-26475: An issue in radareorg radare2 v.0.9.7 through v.5.8.6 and fixed in v.5.8.8 allows a local attacker t An issue in radareorg radare2 v.0.9.7 through v.5.8.6 and fixed in v.5.8.8 allows a local attacker to cause a denial of service via the grub_sfs_read_extent function.

CVE-2023-47016 [HIGH] CWE-787 CVE-2023-47016: radare2 5.8.9 has an out-of-bounds read in r_bin_object_set_items in libr/bin/bobj.c, causing a cras radare2 5.8.9 has an out-of-bounds read in r_bin_object_set_items in libr/bin/bobj.c, causing a crash in r_read_le32 in libr/include/r_endian.h.

CVE-2023-46570 [CRITICAL] CWE-125 CVE-2023-46570: An out-of-bounds read in radare2 v.5.8.9 and before exists in the print_insn32 function of libr/arch An out-of-bounds read in radare2 v.5.8.9 and before exists in the print_insn32 function of libr/arch/p/nds32/nds32-dis.h.

CVE-2023-46569 [CRITICAL] CWE-125 CVE-2023-46569: An out-of-bounds read in radare2 v.5.8.9 and before exists in the print_insn32_fpu function of libr/ An out-of-bounds read in radare2 v.5.8.9 and before exists in the print_insn32_fpu function of libr/arch/p/nds32/nds32-dis.h.

CVE-2023-5686 [HIGH] CWE-122 CVE-2023-5686: Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.9.0. Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.9.0.

CVE-2022-28073 [HIGH] CWE-416 CVE-2022-28073: A use after free in r_reg_set_value function in radare2 5.4.2 and 5.4.0. A use after free in r_reg_set_value function in radare2 5.4.2 and 5.4.0.

CVE-2022-28069 [HIGH] CWE-787 CVE-2022-28069: A heap buffer overflow in vax_opfunction in radare2 5.4.2 and 5.4.0. A heap buffer overflow in vax_opfunction in radare2 5.4.2 and 5.4.0.

CVE-2022-28072 [HIGH] CWE-787 CVE-2022-28072: A heap buffer overflow in r_read_le32 function in radare25.4.2 and 5.4.0. A heap buffer overflow in r_read_le32 function in radare25.4.2 and 5.4.0.

CVE-2022-28071 [HIGH] CWE-416 CVE-2022-28071: A use after free in r_reg_get_name_idx function in radare2 5.4.2 and 5.4.0. A use after free in r_reg_get_name_idx function in radare2 5.4.2 and 5.4.0.

CVE-2022-28070 [HIGH] CWE-476 CVE-2022-28070: A null pointer deference in __core_anal_fcn function in radare2 5.4.2 and 5.4.0. A null pointer deference in __core_anal_fcn function in radare2 5.4.2 and 5.4.0.

CVE-2022-28068 [HIGH] CWE-787 CVE-2022-28068: A heap buffer overflow in r_sleb128 function in radare2 5.4.2 and 5.4.0. A heap buffer overflow in r_sleb128 function in radare2 5.4.2 and 5.4.0.

CVE-2023-4322 [CRITICAL] CWE-122 CVE-2023-4322: Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.9.0. Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.9.0.

CVE-2021-32495 [CRITICAL] CWE-416 CVE-2021-32495: Radare2 has a use-after-free vulnerability in pyc parser's get_none_object function. Attacker can re Radare2 has a use-after-free vulnerability in pyc parser's get_none_object function. Attacker can read freed memory afterwards. This will allow attackers to cause denial of service.

CVE-2021-32494 [HIGH] CWE-369 CVE-2021-32494: Radare2 has a division by zero vulnerability in Mach-O parser's rebase_buffer function. This allow a Radare2 has a division by zero vulnerability in Mach-O parser's rebase_buffer function. This allow attackers to create malicious inputs that can cause denial of service.

CVE-2023-1605 [HIGH] CWE-400 CVE-2023-1605: Denial of Service in GitHub repository radareorg/radare2 prior to 5.8.6. Denial of Service in GitHub repository radareorg/radare2 prior to 5.8.6.

CVE-2023-27114 [MEDIUM] CWE-476 CVE-2023-27114: radare2 v5.8.3 was discovered to contain a segmentation fault via the component wasm_dis at p/wasm/w radare2 v5.8.3 was discovered to contain a segmentation fault via the component wasm_dis at p/wasm/wasm.c.

CVE-2023-0302 [HIGH] CWE-75 CVE-2023-0302: Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) in GitHub re Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) in GitHub repository radareorg/radare2 prior to 5.8.2.

CVE-2022-4843 [HIGH] CWE-476 CVE-2022-4843: NULL Pointer Dereference in GitHub repository radareorg/radare2 prior to 5.8.2. NULL Pointer Dereference in GitHub repository radareorg/radare2 prior to 5.8.2.