CNNVD-202511-1725 Information
CNNVD ID
CNNVD-202511-1725
Related CVE
- CNNVD Published: 2025-11-14
Description (Chinese)
Radare2是Radare开源的一个面向 Unix 极客的 Libre 反向框架。 Radare2 6.0.5及之前版本存在安全漏洞,该漏洞源于bin_ne.c中info函数存在空指针取消引用,可能导致分段错误和拒绝服务。
Description (English)
Radare2 is a Libre reverse framework for Unix extremists from Radare Open Source. There is a security loophole in Radare2 6.5 and earlier versions, which stems from the empty pointer unreferenced in the bin ne.c info function, which may lead to a break error and denial of service.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Radare
Published
2025-11-14
Last Modified
2026-02-24
References
https://github.com/marlinkcyber/advisories/blob/main/advisories/MCSAID-2025-001-radare2-nullptr-deref-bin_ne.md https://github.com/marlinkcyber/advisories/blob/main/advisories/radare2-nullptr-deref-bin_ne.md https://github.com/radareorg/radare2/commit/6c5df3f8570d4f0c360681c08241ad8af3b919fd https://github.com/radareorg/radare2/issues/24660
Share on: