CNNVD-202510-2490 Information

CNNVD ID

CNNVD-202510-2490

Related CVE

CVE-2025-60360

• CNNVD Published: 2025-10-17

Description (Chinese)

Radare2是Radare开源的一个面向 Unix 极客的 Libre 反向框架。 radare2 5.9.8及之前版本存在安全漏洞，该漏洞源于r2r_subprocess_init函数存在内存泄漏。

Description (English)

Radare2 is a Libre reverse framework for Unix extremists from Radare Open Source. The radare2 5.9.8 and previous versions have a security loophole, which stems from the memory leakage of the r2r subproces init function.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Radare

Published

2025-10-17

Last Modified

2026-02-24

References

https://github.com/radareorg/radare2/pull/24245 https://vigilance.fr/vulnerability/Radare2-memory-leak-dated-09-12-2025-49025

Patch

https://github.com/radareorg/radare2/releases