SB2023082111 - Multiple vulnerabilities in Radare2
Published: August 21, 2023
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 2 secuirty vulnerabilities.
1) NULL pointer dereference (CVE-ID: CVE-2022-4843)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a NULL pointer dereference error within the r_io_bank_read_at() function in io_bank.c. A remote attacker can pass specially crafted data to the application and perform a denial of service (DoS) attack.
2) Code injection (CVE-ID: CVE-2023-0302)
The vulnerability allows a remote attacker to compromise the affected system.
The vulnerability exists due to improper input validation. A remote attacker can trick the victim to open a specially crafted file and execute arbitrary code on the system.
Remediation
Install update from vendor's website.
References
- https://huntr.dev/bounties/075b2760-66a0-4d38-b3b5-e9934956ab7f
- https://github.com/radareorg/radare2/commit/842f809d4ec6a12af2906f948657281c9ebc8a24
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OFCCTYAD7ASNQ23ABCUPAZHEDEIOCW6T/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FOXRDPI3OYYKO4PKXE3XD2IFONL6BCHR/
- https://huntr.dev/bounties/583133af-7ae6-4a21-beef-a4b0182cf82e
- https://github.com/radareorg/radare2/commit/961f0e723903011d4f54c2396e44efa91fcc74ce