VulnerableCode Package Details - pkg:alpm/archlinux/radare2@2.5.0-1

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:alpm/archlinux/radare2@2.5.0-1

Essentials
History (20)

purl	pkg:alpm/archlinux/radare2@2.5.0-1

Next non-vulnerable version	2.6.0-1
Latest non-vulnerable version	5.6-1
Risk	4.0

Vulnerabilities affecting this package (10)

Vulnerability	Summary	Fixed by
VCID-2gc7-kn57-b3ak Aliases: CVE-2018-11378	The wasm_dis() function in libr/asm/arch/wasm/wasm.c in or possibly have unspecified other impact via a crafted WASM file.	2.6.0-1 Affected by 0 other vulnerabilities.
VCID-54v3-r36b-pqbt Aliases: CVE-2018-11382	The _inst__sts() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted binary file.	2.6.0-1 Affected by 0 other vulnerabilities.
VCID-627w-z5ne-kye4 Aliases: CVE-2018-11381	The string_scan_range() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted binary file.	2.6.0-1 Affected by 0 other vulnerabilities.
VCID-a4us-jxhs-nfgh Aliases: CVE-2018-11375	The _inst__lds() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted binary file.	2.6.0-1 Affected by 0 other vulnerabilities.
VCID-ausu-fn3w-kueu Aliases: CVE-2018-11379	The get_debug_info() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted PE file.	2.6.0-1 Affected by 0 other vulnerabilities.
VCID-fuw5-x3dd-6yg8 Aliases: CVE-2018-11383	The r_strbuf_fini() function in radare2 2.5.0 allows remote attackers to cause a denial of service (invalid free and application crash) via a crafted ELF file because of an uninitialized variable in the CPSE handler in libr/anal/p/anal_avr.c.	2.6.0-1 Affected by 0 other vulnerabilities.
VCID-myn1-h1xa-5ba7 Aliases: CVE-2018-11380	The parse_import_ptr() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted Mach-O file.	2.6.0-1 Affected by 0 other vulnerabilities.
VCID-qvdt-rhku-v7cb Aliases: CVE-2018-11376	The r_read_le32() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted ELF file.	2.6.0-1 Affected by 0 other vulnerabilities.
VCID-sf7m-amp2-ebde Aliases: CVE-2018-11377	The avr_op_analyze() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted binary file.	2.6.0-1 Affected by 0 other vulnerabilities.
VCID-vemn-pw8w-y3dq Aliases: CVE-2018-11384	The sh_op() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted ELF file.	2.6.0-1 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-20T18:24:32.521789+00:00	Arch Linux Importer	Affected by	VCID-a4us-jxhs-nfgh	https://security.archlinux.org/AVG-709	38.4.0
2026-04-20T18:24:32.497382+00:00	Arch Linux Importer	Affected by	VCID-qvdt-rhku-v7cb	https://security.archlinux.org/AVG-709	38.4.0
2026-04-20T18:24:32.463898+00:00	Arch Linux Importer	Affected by	VCID-sf7m-amp2-ebde	https://security.archlinux.org/AVG-709	38.4.0
2026-04-20T18:24:32.437018+00:00	Arch Linux Importer	Affected by	VCID-2gc7-kn57-b3ak	https://security.archlinux.org/AVG-709	38.4.0
2026-04-20T18:24:32.415246+00:00	Arch Linux Importer	Affected by	VCID-ausu-fn3w-kueu	https://security.archlinux.org/AVG-709	38.4.0
2026-04-20T18:24:32.393540+00:00	Arch Linux Importer	Affected by	VCID-myn1-h1xa-5ba7	https://security.archlinux.org/AVG-709	38.4.0
2026-04-20T18:24:32.371760+00:00	Arch Linux Importer	Affected by	VCID-627w-z5ne-kye4	https://security.archlinux.org/AVG-709	38.4.0
2026-04-20T18:24:32.349534+00:00	Arch Linux Importer	Affected by	VCID-54v3-r36b-pqbt	https://security.archlinux.org/AVG-709	38.4.0
2026-04-20T18:24:32.327540+00:00	Arch Linux Importer	Affected by	VCID-fuw5-x3dd-6yg8	https://security.archlinux.org/AVG-709	38.4.0
2026-04-20T18:24:32.305377+00:00	Arch Linux Importer	Affected by	VCID-vemn-pw8w-y3dq	https://security.archlinux.org/AVG-709	38.4.0
2026-04-01T18:26:03.885519+00:00	Arch Linux Importer	Affected by	VCID-a4us-jxhs-nfgh	https://security.archlinux.org/AVG-709	38.0.0
2026-04-01T18:26:03.858369+00:00	Arch Linux Importer	Affected by	VCID-qvdt-rhku-v7cb	https://security.archlinux.org/AVG-709	38.0.0
2026-04-01T18:26:03.835616+00:00	Arch Linux Importer	Affected by	VCID-sf7m-amp2-ebde	https://security.archlinux.org/AVG-709	38.0.0
2026-04-01T18:26:03.812910+00:00	Arch Linux Importer	Affected by	VCID-2gc7-kn57-b3ak	https://security.archlinux.org/AVG-709	38.0.0
2026-04-01T18:26:03.789747+00:00	Arch Linux Importer	Affected by	VCID-ausu-fn3w-kueu	https://security.archlinux.org/AVG-709	38.0.0
2026-04-01T18:26:03.765569+00:00	Arch Linux Importer	Affected by	VCID-myn1-h1xa-5ba7	https://security.archlinux.org/AVG-709	38.0.0
2026-04-01T18:26:03.740033+00:00	Arch Linux Importer	Affected by	VCID-627w-z5ne-kye4	https://security.archlinux.org/AVG-709	38.0.0
2026-04-01T18:26:03.714570+00:00	Arch Linux Importer	Affected by	VCID-54v3-r36b-pqbt	https://security.archlinux.org/AVG-709	38.0.0
2026-04-01T18:26:03.688021+00:00	Arch Linux Importer	Affected by	VCID-fuw5-x3dd-6yg8	https://security.archlinux.org/AVG-709	38.0.0
2026-04-01T18:26:03.661369+00:00	Arch Linux Importer	Affected by	VCID-vemn-pw8w-y3dq	https://security.archlinux.org/AVG-709	38.0.0