8 matches found
CVE-2019-19785
ATasm 1.06 has a stack-based buffer overflow in the tocomma function in asm.c via a crafted .m65 file...
CVE-2019-19785
ATasm 1.06 has a stack-based buffer overflow in the tocomma function in asm.c via a crafted .m65 file...
CVE-2019-19785
ATasm 1.06 is affected by CVE-2019-19785 due to a stack-based buffer overflow in the to_comma() function (asm.c) triggered by a crafted .m65 file. The issue is confirmed in Fedora advisories referencing CVE-2019-19785 and related CVEs (19786, 19787) with downstream updates in Fedora: ATasm 1.09 p...
CVE-2019-19647
radare2 through 4.0.0 lacks validation of the content variable in the function rasmpseudoincbin at libr/asm/asm.c, ultimately leading to an arbitrary write. This allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via crafted input...
CVE-2019-12829
radare2 through 3.5.1 mishandles the RParse API, which allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact, as demonstrated by newstr buffer overflows during replace operations. This affects libr/asm/asm.c and libr/parse/parse.c...
Buffer overflow
radare2 through 3.5.1 mishandles the RParse API, which allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact, as demonstrated by newstr buffer overflows during replace operations. This affects libr/asm/asm.c and libr/parse/parse.c...
CVE-2018-8808
In radare2 2.4.0, there is a heap-based buffer over-read in the rasmdisassemble function of asm.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted dex file...
CVE-2018-8808
In radare2 2.4.0, there is a heap-based buffer over-read in the rasmdisassemble function of asm.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted dex file...