Out-of-bounds Read in r_bin_java_bootstrap_methods_attr_new function in GitHub repository radareorg/radare2 prior to 5.7.0. The bug causes the program reads data past the end 2f the intented buffer. Typically, this can allow attackers to read sensitive information from other memory locations or cause a crash. More details see [CWE-125: Out-of-bounds read](https://cwe.mitre.org/data/definitions/125.html).
References
Link | Resource |
---|---|
https://github.com/radareorg/radare2/commit/ecc44b6a2f18ee70ac133365de0e509d26d5e168 | Patch Third Party Advisory |
https://huntr.dev/bounties/c8f4c2de-7d96-4ad4-857a-c099effca2d6 | Exploit Issue Tracking Patch Third Party Advisory |
Configurations
History
No history.
Information
Published : 2022-04-24 21:15
Updated : 2024-02-28 19:09
NVD link : CVE-2022-1452
Mitre link : CVE-2022-1452
CVE.ORG link : CVE-2022-1452
JSON object : View
Products Affected
radare
- radare2
CWE
CWE-125
Out-of-bounds Read