CVE-2022-36039
Rizin versions ≤ 0.4.0 are affected by an out-of-bounds write when parsing DEX files, allowing code execution on the user’s machine after opening a malicious DEX. The CVE-2022-36039 entry is corroborated by multiple sources (NVD, OSV, Gentoo GLSA) and refers specifically to this DEX parsing flaw....