Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Fedora 40: FEDORA-2024-c52c5c8791 critical: radare2 denial of service

fedora
Calendar Grey November 9, 2024
Dist Fedora Esm H88
Fedora 40 radare2 security advisory addresses a critical denial of service issue and offers essential update instructions.
fix CVE-2024-48241

Summary

The radare2 is a reverse-engineering framework that is multi-architecture,

multi-platform, and highly scriptable. Radare2 provides a hexadecimal

editor, wrapped I/O, file system support, debugger support, diffing

between two functions or binaries, and code analysis at opcode,

basic block, and function levels.

Update Information:

fix CVE-2024-48241

Topics%20covered

Topics Covered

security advisory denial of service Fedora CVE fix radare2

Change Log

* Wed Oct 16 2024 Michal Ambroz - 5.9.6-1 - bump to 5.9.6

References


[ 1 ] Bug #2318484 - iaito-5.9.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=2318484 [ 2 ] Bug #2319076 - radare2-5.9.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=2319076 [ 3 ] Bug #2322791 - CVE-2024-48241 radare2: OOB write via __bf_div function may lead to denial of service [epel-8] https://bugzilla.redhat.com/show_bug.cgi?id=2322791 [ 4 ] Bug #2322792 - CVE-2024-48241 radare2: OOB write via __bf_div function may lead to denial of service [epel-9] https://bugzilla.redhat.com/show_bug.cgi?id=2322792 [ 5 ] Bug #2322793 - CVE-2024-48241 radare2: OOB write via __bf_div function may lead to denial of service [fedora-39] https://bugzilla.redhat.com/show_bug.cgi?id=2322793 [ 6 ] Bug #2322794 - CVE-2024-48241 radare2: OOB write via __bf_div function may lead to denial of service [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2322794 [ 7 ] Bug #2322795 - CVE-2024-48241 radare2: OO...

Read the Full Advisory

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-c52c5c8791' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: radare2
Product: Fedora 40
Version: 5.9.6
Release: 1.fc40
URL: https://radare.org/
Summary: The reverse engineering framework

Topics%20covered

Topics Covered

security advisory denial of service Fedora CVE fix radare2

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here