2 matches found
radare2 denial of service vulnerability (CNVD-2018-13276)
radare2 is a set of libraries and tools for working with binary files. A security vulnerability in the 'rbinjavaannotationnew' function in the shlr/java/class.c file in radare2 version 2.7.0 stems from a lack of input validation in the rbinjavalinenumbertable missing input validation in attrnew. ...
UBUNTU-CVE-2018-14017
The rbinjavaannotationnew function in shlr/java/class.c in radare2 2.7.0 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted .class file because of missing input validation in rbinjavalinenumbertableattrnew...