Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Radare2
(Radare)| Repositories |
• https://github.com/radare/radare2
• https://github.com/devnexen/radare2 |
| #Vulnerabilities | 132 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2022-02-08 | CVE-2022-0522 | Access of Memory Location Before Start of Buffer in NPM radare2.js prior to 5.6.2. | Fedora, Radare2 | 7.1 | ||
| 2022-02-08 | CVE-2022-0523 | Use After Free in GitHub repository radareorg/radare2 prior to 5.6.2. | Fedora, Radare2 | 7.8 | ||
| 2022-02-16 | CVE-2022-0559 | Use After Free in GitHub repository radareorg/radare2 prior to 5.6.2. | Fedora, Radare2 | 9.8 | ||
| 2022-02-22 | CVE-2022-0676 | Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.6.4. | Fedora, Radare2 | 7.8 | ||
| 2022-02-22 | CVE-2022-0712 | NULL Pointer Dereference in GitHub repository radareorg/radare2 prior to 5.6.4. | Fedora, Radare2 | 5.5 | ||
| 2022-02-22 | CVE-2022-0713 | Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.6.4. | Fedora, Radare2 | 7.1 | ||
| 2022-02-23 | CVE-2022-0476 | Denial of Service in GitHub repository radareorg/radare2 prior to 5.6.4. | Fedora, Radare2 | 5.5 | ||
| 2022-02-24 | CVE-2022-0695 | Denial of Service in GitHub repository radareorg/radare2 prior to 5.6.4. | Fedora, Radare2 | 5.5 | ||
| 2022-02-24 | CVE-2021-4021 | A vulnerability was found in Radare2 in versions prior to 5.6.2, 5.6.0, 5.5.4 and 5.5.2. Mapping a huge section filled with zeros of an ELF64 binary for MIPS architecture can lead to uncontrolled resource consumption and DoS. | Radare2 | 7.5 | ||
| 2022-03-05 | CVE-2022-0849 | Use After Free in r_reg_get_name_idx in GitHub repository radareorg/radare2 prior to 5.6.6. | Radare2 | 5.5 |