CVE-2026-14759
radareorg radare2 up to 6.1.6 is affected by a heap-based overflow in r_bin_java_inner_classes_attr_calc_size (shlr/java/class.c). The vulnerability is triggered via local manipulation of input and has a public exploit; a patch (commit cd62d15a6cbecdc67fd03f3ebdbbbeb741d18f87) is available to fix...