9 matches found
CVE-2017-9949
The grubmemmove function in shlr/grub/kern/misc.c in radare2 1.5.0 allows remote attackers to cause a denial of service stack-based buffer underflow and application crash or possibly have unspecified other impact via a crafted binary file, possibly related to a buffer underflow in fs/ext2.c in GN...
CVE-2017-9761
The findeoq function in libr/core/cmd.c in radare2 1.5.0 allows remote attackers to cause a denial of service heap-based out-of-bounds read and application crash via a crafted binary file...
CVE-2017-9761
The findeoq function in libr/core/cmd.c in radare2 1.5.0 allows remote attackers to cause a denial of service heap-based out-of-bounds read and application crash via a crafted binary file...
CVE-2017-9761
The vulnerability CVE-2017-9761 affects radare2 1.5.0, specifically the find_eoq function in libr/core/cmd.c. A crafted binary can trigger a heap-based out-of-bounds read, leading to an application crash. Exploitation details are not expanded beyond the description; the mode is local (per CVSS) a...
CVE-2017-9762
The cmdinfo function in libr/core/cmdinfo.c in radare2 1.5.0 allows remote attackers to cause a denial of service use-after-free and application crash via a crafted binary file...
CVE-2017-9763
The grubext2readblock function in fs/ext2.c in GNU GRUB before 2013-11-12, as used in shlr/grub/fs/ext2.c in radare2 1.5.0, allows remote attackers to cause a denial of service excessive stack use and application crash via a crafted binary file, related to use of a variable-size stack array...
CVE-2017-9763
CVE-2017-9763 affects GNU GRUB (grub_ext2_read_block in fs/ext2.c) used by radare2 1.5.0, where a crafted binary can trigger excessive stack use, causing a denial of service. Root cause is related to a variable-size stack array. Public discussions in multiple sources (SUSE OSV entry and advisorie...
Design/Logic Flaw
The rconfigset function in libr/config/config.c in radare2 1.5.0 allows remote attackers to cause a denial of service use-after-free and application crash via a crafted DEX file...
CVE-2017-9520
The rconfigset function in libr/config/config.c in radare2 1.5.0 allows remote attackers to cause a denial of service use-after-free and application crash via a crafted DEX file...