Описание
In radare2 prior to 3.1.1, the parseOperand function inside libr/asm/p/asm_x86_nz.c may allow attackers to cause a denial of service (application crash in libr/util/strbuf.c via a stack-based buffer over-read) by crafting an input file, a related issue to CVE-2018-20455.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needs-triage |
| cosmic | ignored | end of life |
| devel | not-affected | 5.5.0+dfsg-1ubuntu1 |
| disco | not-affected | 3.1.2+dfsg-1.1 |
| eoan | not-affected | 3.1.2+dfsg-1.1 |
| esm-apps/bionic | needs-triage | |
| esm-apps/focal | not-affected | 3.1.2+dfsg-1.1 |
| esm-apps/noble | not-affected | 5.5.0+dfsg-1ubuntu1 |
| esm-apps/xenial | needs-triage | |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was needs-triage] |
Показывать по
EPSS
4.3 Medium
CVSS2
5.5 Medium
CVSS3
Связанные уязвимости
In radare2 prior to 3.1.1, the parseOperand function inside libr/asm/p/asm_x86_nz.c may allow attackers to cause a denial of service (application crash in libr/util/strbuf.c via a stack-based buffer over-read) by crafting an input file, a related issue to CVE-2018-20455.
In radare2 prior to 3.1.1, the parseOperand function inside libr/asm/p ...
In radare2 prior to 3.1.1, the parseOperand function inside libr/asm/p/asm_x86_nz.c may allow attackers to cause a denial of service (application crash in libr/util/strbuf.c via a stack-based buffer over-read) by crafting an input file, a related issue to CVE-2018-20455.
EPSS
4.3 Medium
CVSS2
5.5 Medium
CVSS3