Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Fedora 42: radare2 2025-1189bc2336 Security Advisory Updates

fedora
Calendar Grey March 20, 2025
Dist Fedora Esm H88
Updates to radare2 fix multiple CVEs addressing potential buffer overflows and execution issues. Recommended for Fedora 42.
fix CVE-2024-56737, CVE-2025-56737, CVE-2025-1864 Fix CVE-2025-1744 and CVE-2025-1864

Summary

The radare2 is a reverse-engineering framework that is multi-architecture,

multi-platform, and highly scriptable. Radare2 provides a hexadecimal

editor, wrapped I/O, file system support, debugger support, diffing

between two functions or binaries, and code analysis at opcode,

basic block, and function levels.

Update Information:

fix CVE-2024-56737, CVE-2025-56737, CVE-2025-1864 Fix CVE-2025-1744 and CVE-2025-1864

Topics%20covered

Topics Covered

security advisory fedora buffer overflow heap overflow radare2

Change Log

* Tue Mar 11 2025 Michal Ambroz - 5.9.8-7 - fix CVE-2024-56737 * Fri Mar 7 2025 Michal Ambroz - 5.9.8-6 - fix CVE-2025-1744 and CVE-2025-1864

References


[ 1 ] Bug #2334774 - CVE-2024-56737 radare2: heap-based buffer overflow [epel-8] https://bugzilla.redhat.com/show_bug.cgi?id=2334774 [ 2 ] Bug #2334775 - CVE-2024-56737 radare2: heap-based buffer overflow [epel-9] https://bugzilla.redhat.com/show_bug.cgi?id=2334775 [ 3 ] Bug #2334777 - CVE-2024-56737 radare2: heap-based buffer overflow [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2334777 [ 4 ] Bug #2334779 - CVE-2024-56737 radare2: heap-based buffer overflow [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2334779 [ 5 ] Bug #2348976 - CVE-2025-1744 radare2: Out-of-bounds Write in radare2 [epel-8] https://bugzilla.redhat.com/show_bug.cgi?id=2348976 [ 6 ] Bug #2348977 - CVE-2025-1744 radare2: Out-of-bounds Write in radare2 [epel-9] https://bugzilla.redhat.com/show_bug.cgi?id=2348977 [ 7 ] Bug #2348978 - CVE-2025-1744 radare2: Out-of-bounds Write in radare2 [fedora-40] https://bugzilla....

Read the Full Advisory

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-1189bc2336' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
important
Lowest
Low
Medium
High
Critical

Name: radare2
Product: Fedora 42
Version: 5.9.8
Release: 7.fc42
URL: https://radare.org/
Summary: The reverse engineering framework

Topics%20covered

Topics Covered

security advisory fedora buffer overflow heap overflow radare2

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here