CVE-2023-47016

CVE-2023-47016, security advisory, suse linux, suse, security, cve

CVE-2023-47016

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2023-47016 at MITRE

Description

radare2 5.8.9 has an out-of-bounds read in r_bin_object_set_items in libr/bin/bobj.c, causing a crash in r_read_le32 in libr/include/r_endian.h.

---

SUSE information

Overall state of this security issue: Does not affect SUSE products

This issue is currently rated as having important severity.

CVSS v3 Scores

	CNA (CISA-ADP)	National Vulnerability Database
Base Score	7.5	7.5
Vector	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector	Network	Network
Attack Complexity	Low	Low
Privileges Required	None	None
User Interaction	None	None
Scope	Unchanged	Unchanged
Confidentiality Impact	None	None
Integrity Impact	None	None
Availability Impact	High	High
CVSSv3 Version	3.1	3.1

SUSE Bugzilla entry: 1217386 [NEW]

No SUSE Security Announcements cross referenced.

---

SUSE Timeline for this CVE

CVE page created: Wed Nov 22 09:00:03 2023
CVE page last modified: Sat Oct 12 15:47:52 2024