CNNVD-202511-1726 Information

Nov 14, 2025 cve

CNNVD ID

CNNVD-202511-1726

CVE-2025-63744

CNNVD Published: 2025-11-14

Description (Chinese)

Radare2是Radare开源的一个面向 Unix 极客的 Libre 反向框架。 Radare2 6.0.5及之前版本存在安全漏洞，该漏洞源于bin_dyldcache.c中load函数存在空指针取消引用，可能导致分段错误和程序崩溃。

Description (English)

Radare2 is a Libre reverse framework for Unix extremists from Radare Open Source. There is a security loophole in Radare2 6.0.5 and earlier versions, which stems from the empty pointer dequote of the load function in bin dyldcache.c, which could lead to the breakdown of the sequence error.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Radare

Published

2025-11-14

Last Modified

2026-02-24

References

https://github.com/marlinkcyber/advisories/blob/main/advisories/MCSAID-2025-002-radare2-nullptr-deref-bin_dyldcache.md https://github.com/marlinkcyber/advisories/blob/main/advisories/radare2-nullptr-deref-bin_dyldcache.md https://github.com/radareorg/radare2/commit/e37e15d10fd8a19c3e57b3d7735a2cfe0082ec79 https://github.com/radareorg/radare2/issues/24661

Share on: