3 matches found
CVE-2022-36044
Rizin is a UNIX-like reverse engineering framework and command-line toolset. Versions 0.4.0 and prior are vulnerable to an out-of-bounds write when getting data from Luac files. A user opening a malicious Luac file could be affected by this vulnerability, allowing an attacker to execute code on t...
CVE-2022-36044 Rizin Out-of-bounds Write vulnerability in Lua binary plugin
Rizin is a UNIX-like reverse engineering framework and command-line toolset. Versions 0.4.0 and prior are vulnerable to an out-of-bounds write when getting data from Luac files. A user opening a malicious Luac file could be affected by this vulnerability, allowing an attacker to execute code on t...
CVE-2022-36044
CVE-2022-36044 affects Rizin 0.4.0 and earlier, due to an out-of-bounds write when processing Luac files. A malicious Luac file could allow code execution. Fixes are committed (07b43bc8... and 05bbd147...) and upstream/public advisories reference these patches. Connected sources note related fixe...