Back to search
CVE-2019-12790
Published: Jun 10, 2019
Modified: Aug 4, 2024
PUBLISHED
Description
In radare2 through 3.5.1, there is a heap-based buffer over-read in the r_egg_lang_parsechar function of egg_lang.c. This allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact because of missing length validation in libr/egg/egg.c.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://github.com/radare/radare2/issues/14211
x_refsource_MISC
FEDORA-2019-e612286002
vendor-advisory
x_refsource_FEDORA
FEDORA-2019-2a16e1ab93
vendor-advisory
x_refsource_FEDORA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now