rizin
| Link | package | bugs open | bugs closed | Wiki | GitHub | web search |
| Description | Open-source tools to disasm, debug, analyze and manipulate binary files |
| Version | 0.7.3-3 [extra] |
Resolved
| Group | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|
| AVG-2590 | 0.3.1-1 | 0.3.2-1 | Medium | Fixed |
| Issue | Group | Severity | Remote | Type | Description |
|---|---|---|---|---|---|
| CVE-2021-43814 | AVG-2590 | Medium | No | Arbitrary code execution | In Rizin versions up to and including 0.3.1 there is a heap-based out of bounds write in parse_die() when reversing an AMD64 ELF binary with DWARF debug... |
| CVE-2021-4022 | AVG-2590 | Low | No | Denial of service | A specially crafted binary can make Rizin segfault when it tries to analyze it (doing a full analysis with aaa). In rz_core_analysis_type_match retctx... |
Advisories
| Date | Advisory | Group | Severity | Type |
|---|---|---|---|---|
| 04 Apr 2022 | ASA-202204-4 | AVG-2590 | Medium | multiple issues |