https://bugzilla.suse.com/show_bug.cgi?id=1232642 Bug ID: 1232642 Summary: VUL-0: CVE-2024-48241: radare2: out-of-bounds write in libbf.c due to a possible integer overflow when performing memory allocation Classification: openSUSE Product: openSUSE Distribution Version: Leap 15.6 Hardware: Other URL: https://smash.suse.de/issue/426338/ OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Security Assignee: daniel@molkentin.de Reporter: smash_bz@suse.de QA Contact: security-team@suse.de CC: camila.matos@suse.com Target Milestone: --- Found By: Security Response Team Blocker: --- An issue in radare2 v5.8.0 through v5.9.4 allows a local attacker to cause a denial of service via the __bf_div function. References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-48241 https://www.cve.org/CVERecord?id=CVE-2024-48241 https://github.com/St-Andrews-Bug-Busters/Vuln_info/blob/main/radare2/CVE-20... https://github.com/radareorg/radare2/issues/23317 https://github.com/radareorg/radare2/pull/23318 -- You are receiving this mail because: You are on the CC list for the bug.