CVE-2018-20456

2018-12-25T19:29:00
ID CVE-2018-20456
Type cve
Reporter cve@mitre.org
Modified 2018-12-31T14:15:00

Description

In radare2 prior to 3.1.1, the parseOperand function inside libr/asm/p/asm_x86_nz.c may allow attackers to cause a denial of service (application crash in libr/util/strbuf.c via a stack-based buffer over-read) by crafting an input file, a related issue to CVE-2018-20455.