Описание
Radare2 has a use-after-free vulnerability in pyc parser's get_none_object function. Attacker can read freed memory afterwards. This will allow attackers to cause denial of service.
Ссылки
- PatchVendor Advisory
- Issue TrackingPatchVendor Advisory
- PatchVendor Advisory
- Issue TrackingPatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:radare:radare2:5.3.0:*:*:*:*:*:*:*
EPSS
Процентиль: 49%
0.0026
Низкий
10 Critical
CVSS3
9.1 Critical
CVSS3
Дефекты
CWE-416
CWE-416
Связанные уязвимости
CVSS3: 10
ubuntu
больше 2 лет назад
Radare2 has a use-after-free vulnerability in pyc parser's get_none_object function. Attacker can read freed memory afterwards. This will allow attackers to cause denial of service.
CVSS3: 10
debian
больше 2 лет назад
Radare2 has a use-after-free vulnerability in pyc parser's get_none_ob ...
CVSS3: 10
github
больше 2 лет назад
Radare2 has a use-after-free vulnerability in pyc parser's get_none_object function. Attacker can read freed memory afterwards. This will allow attackers to cause denial of service.
EPSS
Процентиль: 49%
0.0026
Низкий
10 Critical
CVSS3
9.1 Critical
CVSS3
Дефекты
CWE-416
CWE-416