CVE-2018-12320

Опубликовано: 13 июн. 2018

Источник: debian

Описание

There is a use after free in radare2 2.6.0 in r_anal_bb_free() in libr/anal/bb.c via a crafted Java binary file.

Пакет	Статус	Версия исправления	Релиз	Тип
radare2	fixed	2.7.0+dfsg-1		package
radare2	no-dsa		jessie	package

https://github.com/radare/radare2/commit/90b71c017a7fa9732fe45fd21b245ee051b1f548
https://github.com/radare/radare2/issues/10293

CVE-2018-12320

CVSS3: 7.8

ubuntu

больше 7 лет назад

There is a use after free in radare2 2.6.0 in r_anal_bb_free() in libr/anal/bb.c via a crafted Java binary file.

CVE-2018-12320

CVSS3: 7.8

nvd

больше 7 лет назад

There is a use after free in radare2 2.6.0 in r_anal_bb_free() in libr/anal/bb.c via a crafted Java binary file.

GHSA-39pg-x4cc-j86x

CVSS3: 7.8

github

больше 3 лет назад

There is a use after free in radare2 2.6.0 in r_anal_bb_free() in libr/anal/bb.c via a crafted Java binary file.