CVE-2017-16359

Source
https://cve.org/CVERecord?id=CVE-2017-16359
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-16359.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2017-16359
Downstream
Published
2017-11-01T17:29:00.477Z
Modified
2026-07-08T12:06:17.289520Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

In radare 2.0.1, a pointer wraparound vulnerability exists in storeversioninfognu_verdef() in libr/bin/format/elf/elf.c.

References

Affected packages

Git / github.com/radareorg/radare2

Affected ranges

Type
GIT
Repo
https://github.com/radareorg/radare2
Events
Database specific
{
    "cpe": "cpe:2.3:a:radare:radare2:2.0.1:*:*:*:*:*:*:*",
    "extracted_events": [
        {
            "introduced": "2.0.1"
        },
        {
            "last_affected": "2.0.1"
        }
    ],
    "source": [
        "CPE_STRING",
        "REFERENCES"
    ]
}

Affected versions

2.*
2.0.1

Database specific

vanir_signatures
[
    {
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "205767329546089411816923684444757154344",
                "116962486333336334483311932762932746353",
                "235060408909082972779071612835947245887",
                "317840737819339854074068803899061188789",
                "270580377417269062081416555104660472910",
                "222875861431645918637107540952302915991",
                "125494524632410177961157447009788495709",
                "33108661900310170058129763959479435167",
                "61705708259000971394596603377153824747",
                "102400340577848905704539030647730180743",
                "26751008388863343383945332473175306195",
                "75354251326827955630680504594614818420",
                "50935077176645389882646615086357426282",
                "264457123534130900217307139215095263928",
                "6648137558313607620562253969176636662",
                "7359106301289520161821476057270527131"
            ]
        },
        "target": {
            "file": "libr/bin/format/elf/elf.c"
        },
        "id": "CVE-2017-16359-ba4167d6",
        "signature_version": "v1",
        "signature_type": "Line",
        "source": "https://github.com/radareorg/radare2/commit/fbaf24bce7ea4211e4608b3ab6c1b45702cb243d",
        "deprecated": false
    },
    {
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "282159930829048308015317338323861299403",
                "84007361845721831638664651796509543395",
                "205767329546089411816923684444757154344",
                "116962486333336334483311932762932746353",
                "127066757815004210549136953330449976306",
                "317951777246514514710236561162961425919",
                "43229957719081991698316730048269307487",
                "328083852044537614208500836020710060047",
                "61705708259000971394596603377153824747",
                "102400340577848905704539030647730180743",
                "26751008388863343383945332473175306195",
                "75354251326827955630680504594614818420",
                "233395960961567134053272682069429222337",
                "264457123534130900217307139215095263928",
                "6648137558313607620562253969176636662",
                "7359106301289520161821476057270527131",
                "310093958162505430595003820489376544275"
            ]
        },
        "target": {
            "file": "libr/bin/format/elf/elf.c"
        },
        "id": "CVE-2017-16359-e1dcf845",
        "signature_version": "v1",
        "signature_type": "Line",
        "source": "https://github.com/radareorg/radare2/commit/62e39f34b2705131a2d08aff0c2e542c6a52cf0e",
        "deprecated": false
    }
]
source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-16359.json"
vanir_signatures_modified
"2026-07-08T12:06:17Z"