OSV-2023-399

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/radare2/OSV-2023-399.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2023-399
Published
2023-05-15T14:01:19.849514Z
Modified
2023-05-15T14:01:19.849790Z
Summary
Heap-use-after-free in get_got_entry
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=58949

Crash type: Heap-use-after-free READ 8
Crash state:
get_got_entry
get_import_addr
Elf64__r_bin_elf_load_symbols_and_imports
References

Affected packages

OSS-Fuzz / radare2

Package

Name
radare2
Purl
pkg:generic/radare2

Affected ranges

Type
GIT
Repo
https://github.com/radareorg/radare2
Events
Introduced
8f1af2e1ce8992afe99f14453555eace299ee5ca
Fixed
60dd0cd9fdbc43602ca872245f27358d01fec243

Ecosystem specific 

{
    "severity": "HIGH"
}