OSV-2023-605

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/radare2/OSV-2023-605.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2023-605
Published
2023-07-23T14:00:51.654724Z
Modified
2024-04-01T14:21:09.455014Z
Summary
Heap-use-after-free in Elf64_free
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=60790

Crash type: Heap-use-after-free READ 8
Crash state:
Elf64_free
destroy
r_bin_file_free
References

Affected packages

OSS-Fuzz / radare2

Package

Name
radare2
Purl
pkg:generic/radare2

Affected ranges

Type
GIT
Repo
https://github.com/radareorg/radare2
Events
Introduced
09d631be5b49b2da0034fc69ff79bd133f8a69a7
Fixed
aa72538816ef107736b5f2150a9fbba05542b2fa

Ecosystem specific 

{
    "severity": "HIGH"
}

Database specific 

{
    "fixed_range": "514a33e144d737ee99217aa9523b50b596a3754f:aa72538816ef107736b5f2150a9fbba05542b2fa"
}