VulnerableCode Package Details - pkg:deb/debian/radare2@2.1.0%2Bdfsg-1?distro=sid

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-41wv-efp7-23cn	In radare 2.0.1, a memory corruption vulnerability exists in store_versioninfo_gnu_verdef() and store_versioninfo_gnu_verneed() in libr/bin/format/elf/elf.c, as demonstrated by an invalid free. This error is due to improper sh_size validation when allocating memory.	CVE-2017-16357
VCID-7p7w-jwbj-guea	In radare 2.0.1, a pointer wraparound vulnerability exists in store_versioninfo_gnu_verdef() in libr/bin/format/elf/elf.c.	CVE-2017-16359
VCID-8bzm-ye49-w7fc	The store_versioninfo_gnu_verdef function in libr/bin/format/elf/elf.c in radare2 2.0.0 allows remote attackers to cause a denial of service (r_read_le16 invalid write and application crash) or possibly have unspecified other impact via a crafted ELF file.	CVE-2017-15385
VCID-hvrq-x6mt-nuad	In radare2 2.0.1, libr/bin/dwarf.c allows remote attackers to cause a denial of service (invalid read and application crash) via a crafted ELF file, related to r_bin_dwarf_parse_comp_unit in dwarf.c and sdb_set_internal in shlr/sdb/src/sdb.c.	CVE-2017-16805
VCID-pqrq-1jus-tkep	In radare 2.0.1, an out-of-bounds read vulnerability exists in string_scan_range() in libr/bin/bin.c when doing a string search.	CVE-2017-16358
VCID-qtjk-bakx-nyar	The wasm_dis function in libr/asm/arch/wasm/wasm.c in radare2 2.0.0 allows remote attackers to cause a denial of service (stack-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted WASM file that triggers an incorrect r_hex_bin2str call.	CVE-2017-15368
VCID-wqu2-yhcs-tqgh	In radare2 2.0.1, an integer exception (negative number leading to an invalid memory access) exists in store_versioninfo_gnu_verdef() in libr/bin/format/elf/elf.c via crafted ELF files when parsing the ELF version on 32bit systems.	CVE-2017-15932
VCID-x9x1-xeec-z7ej	In radare2 2.0.1, an integer exception (negative number leading to an invalid memory access) exists in store_versioninfo_gnu_verneed() in libr/bin/format/elf/elf.c via crafted ELF files on 32bit systems.	CVE-2017-15931

Vulnerability

Summary

Aliases

VCID-41wv-efp7-23cn

In radare 2.0.1, a memory corruption vulnerability exists in store_versioninfo_gnu_verdef() and store_versioninfo_gnu_verneed() in libr/bin/format/elf/elf.c, as demonstrated by an invalid free. This error is due to improper sh_size validation when allocating memory.

CVE-2017-16357

VCID-7p7w-jwbj-guea

In radare 2.0.1, a pointer wraparound vulnerability exists in store_versioninfo_gnu_verdef() in libr/bin/format/elf/elf.c.

CVE-2017-16359

VCID-8bzm-ye49-w7fc

The store_versioninfo_gnu_verdef function in libr/bin/format/elf/elf.c in radare2 2.0.0 allows remote attackers to cause a denial of service (r_read_le16 invalid write and application crash) or possibly have unspecified other impact via a crafted ELF file.

CVE-2017-15385

VCID-hvrq-x6mt-nuad

In radare2 2.0.1, libr/bin/dwarf.c allows remote attackers to cause a denial of service (invalid read and application crash) via a crafted ELF file, related to r_bin_dwarf_parse_comp_unit in dwarf.c and sdb_set_internal in shlr/sdb/src/sdb.c.

CVE-2017-16805

VCID-pqrq-1jus-tkep

In radare 2.0.1, an out-of-bounds read vulnerability exists in string_scan_range() in libr/bin/bin.c when doing a string search.

CVE-2017-16358

VCID-qtjk-bakx-nyar

The wasm_dis function in libr/asm/arch/wasm/wasm.c in radare2 2.0.0 allows remote attackers to cause a denial of service (stack-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted WASM file that triggers an incorrect r_hex_bin2str call.

CVE-2017-15368

VCID-wqu2-yhcs-tqgh

In radare2 2.0.1, an integer exception (negative number leading to an invalid memory access) exists in store_versioninfo_gnu_verdef() in libr/bin/format/elf/elf.c via crafted ELF files when parsing the ELF version on 32bit systems.

CVE-2017-15932

VCID-x9x1-xeec-z7ej

In radare2 2.0.1, an integer exception (negative number leading to an invalid memory access) exists in store_versioninfo_gnu_verneed() in libr/bin/format/elf/elf.c via crafted ELF files on 32bit systems.

CVE-2017-15931

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T12:47:44.331286+00:00	Debian Importer	Fixing	VCID-pqrq-1jus-tkep	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T12:39:15.842803+00:00	Debian Importer	Fixing	VCID-8bzm-ye49-w7fc	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T12:35:43.996855+00:00	Debian Importer	Fixing	VCID-x9x1-xeec-z7ej	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T12:27:30.090399+00:00	Debian Importer	Fixing	VCID-wqu2-yhcs-tqgh	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T12:24:54.502297+00:00	Debian Importer	Fixing	VCID-qtjk-bakx-nyar	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:58:00.919057+00:00	Debian Importer	Fixing	VCID-41wv-efp7-23cn	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:52:53.928037+00:00	Debian Importer	Fixing	VCID-7p7w-jwbj-guea	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:40:04.308400+00:00	Debian Importer	Fixing	VCID-hvrq-x6mt-nuad	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T08:46:38.496649+00:00	Debian Importer	Fixing	VCID-pqrq-1jus-tkep	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:40:20.032887+00:00	Debian Importer	Fixing	VCID-8bzm-ye49-w7fc	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:37:40.080352+00:00	Debian Importer	Fixing	VCID-x9x1-xeec-z7ej	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:31:39.968596+00:00	Debian Importer	Fixing	VCID-wqu2-yhcs-tqgh	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:29:49.984467+00:00	Debian Importer	Fixing	VCID-qtjk-bakx-nyar	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:00:54.756314+00:00	Debian Importer	Fixing	VCID-41wv-efp7-23cn	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T17:57:38.217504+00:00	Debian Importer	Fixing	VCID-7p7w-jwbj-guea	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T17:49:34.554858+00:00	Debian Importer	Fixing	VCID-hvrq-x6mt-nuad	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:51:39.789147+00:00	Debian Importer	Fixing	VCID-hvrq-x6mt-nuad	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:51:39.764529+00:00	Debian Importer	Fixing	VCID-7p7w-jwbj-guea	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:51:39.740118+00:00	Debian Importer	Fixing	VCID-pqrq-1jus-tkep	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:51:39.714961+00:00	Debian Importer	Fixing	VCID-41wv-efp7-23cn	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:51:39.690032+00:00	Debian Importer	Fixing	VCID-wqu2-yhcs-tqgh	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:51:39.665405+00:00	Debian Importer	Fixing	VCID-x9x1-xeec-z7ej	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:51:39.640903+00:00	Debian Importer	Fixing	VCID-8bzm-ye49-w7fc	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:51:39.616042+00:00	Debian Importer	Fixing	VCID-qtjk-bakx-nyar	https://security-tracker.debian.org/tracker/data/json	38.1.0