Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 536
Alerts This Week
Warning Icon 1 536

openSUSE Leap 16.0 Radare2 Critical Threat Advisory 2026-20653-1

opensuse
Calendar Grey April 30, 2026
Scroller Opensuse
OpenSUSE security update addressing 6 flaws in radare2, with critical improvements and bug fixes for enhanced safety.
An update that solves 6 vulnerabilities and has 6 bug fixes can now be installed.

Description

This update for radare2 fixes the following issues:

Changes in radare2:

- Update to version 6.1.4 (bsc#1262142, CVE-2026-40499):

* Analysis: improve autoname scoring, jmptbl detection, and performance

* Add callargs modifier, rnum expressions, and typed function context

* Refactor autoname into plugin; extend RAnalPlugin hooks

* Fix leaks, overflows, and command injection in analysis scripts

* Improve string detection, wide strings, and switch/case analysis

* Arch: fix v850/nds32 ESIL, optimize to O(1), improve pseudo support

* Cache capstone options and improve multi-arch disassembly

* ASM: add camel syntax support, unify via RArch API

* Bin: major parser fixes (ELF, Mach-O, PE, DEX, PDB, WAD, XCOFF)

* Fix leaks, OOB reads/writes, overflows, and improve bounds checks

* Improve Swift demangling, ARM hints, relocations, and imports

* Add nds32 reloc support and optimize kernelcache parsing

* Build: install to lib64, fix illumos and packaging issues

* CI:...

Read the Full Advisory

Patch

Package List

- openSUSE Leap 16.0:

libsdb2_4_2-6.1.4-bp160.1.1

radare2-6.1.4-bp160.1.1

radare2-devel-6.1.4-bp160.1.1

radare2-zsh-completion-6.1.4-bp160.1.1

References

* bsc#1234065

* bsc#1237250

* bsc#1238075

* bsc#1238451

* bsc#1244121

* bsc#1262142

References:

* https://www.suse.com/security/cve/CVE-2024-29645.html

* https://www.suse.com/security/cve/CVE-2025-1378.html

* https://www.suse.com/security/cve/CVE-2025-1744.html

* https://www.suse.com/security/cve/CVE-2025-1864.html

* https://www.suse.com/security/cve/CVE-2025-5641.html

* https://www.suse.com/security/cve/CVE-2026-40499.html

Severity
critical
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2026:20653-1
Rating: critical
Affected Products: openSUSE Leap 16.0 -------------------------------------------------------------

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.