CVE-2021-4022 - A vulnerability was found in rizin. The bug involves an ELF64 binary for the HPPA architecture. When

CVE-2021-4022

Summary

A vulnerability was found in rizin. The bug involves an ELF64 binary for the HPPA architecture. When a specially crafted binarygets analysed by rizin, it causes rizin to crash by freeing an uninitialized (and potentially user controlled, depending on the build) memory address.

References

https://github.com/rizinorg/rizin/issues/2015

Vulnerable Configurations

cpe:2.3:a:rizin:rizin:-:*:*:*:*:*:*:*
cpe:2.3:a:rizin:rizin:-:*:*:*:*:*:*:*
cpe:2.3:a:rizin:rizin:0.1.0:*:*:*:*:*:*:*
cpe:2.3:a:rizin:rizin:0.1.0:*:*:*:*:*:*:*
cpe:2.3:a:rizin:rizin:0.1.1:*:*:*:*:*:*:*
cpe:2.3:a:rizin:rizin:0.1.1:*:*:*:*:*:*:*
cpe:2.3:a:rizin:rizin:0.1.2:*:*:*:*:*:*:*
cpe:2.3:a:rizin:rizin:0.1.2:*:*:*:*:*:*:*
cpe:2.3:a:rizin:rizin:0.2.0:*:*:*:*:*:*:*
cpe:2.3:a:rizin:rizin:0.2.0:*:*:*:*:*:*:*
cpe:2.3:a:rizin:rizin:0.2.1:*:*:*:*:*:*:*
cpe:2.3:a:rizin:rizin:0.2.1:*:*:*:*:*:*:*
cpe:2.3:a:rizin:rizin:0.3.0:*:*:*:*:*:*:*
cpe:2.3:a:rizin:rizin:0.3.0:*:*:*:*:*:*:*
cpe:2.3:a:rizin:rizin:0.3.1:*:*:*:*:*:*:*
cpe:2.3:a:rizin:rizin:0.3.1:*:*:*:*:*:*:*

CVSS

Base:	None
Impact:
Exploitability:

CWE

CWE-416

CAPEC

Access

Vector	Complexity	Authentication

Impact

Confidentiality	Integrity	Availability

Last major update

31-08-2022 - 17:03

Published

25-08-2022 - 18:15

Last modified

31-08-2022 - 17:03