CVE-2022-0695
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2022-0695
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-0695.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2022-0695
- Downstream
- Related
- Published
- 2022-02-24T13:15:07Z
- Modified
- 2025-10-23T14:13:02.903170Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
Denial of Service in GitHub repository radareorg/radare2 prior to 5.6.4.
- References
-
- https://github.com/radareorg/radare2/commit/634b886e84a5c568d243e744becc6b3223e089cf
- https://huntr.dev/bounties/bdbddc0e-fb06-4211-a90b-7cbedcee2bea
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BZTIMAS53YT66FUS4QHQAFRJOBMUFG6D/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E6YBRQ3UCFWJVSOYIKPVUDASZ544TFND/
Affected packages
Git / github.com/radareorg/radare2
Affected ranges
- Type
- GIT
- Repo
- https://github.com/radareorg/radare2
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
0.*
0.10.0
0.10.1
0.10.2
0.10.3
0.10.4
0.10.4-termux4
0.10.5
0.10.6
0.8.6
0.8.8
0.9
0.9.2
0.9.4
0.9.6
0.9.7
0.9.8
0.9.8-rc1
0.9.8-rc2
0.9.8-rc3
0.9.8-rc4
0.9.9
1.*
1.0
1.0.0
1.0.1
1.0.2
1.1.0
1.2.0
1.2.0-git
1.3.0
1.3.0-git
1.4.0
1.5.0
1.6.0
2.*
2.0.0
2.0.1
2.1.0
2.2.0
2.4.0
2.5.0
2.6.0
2.6.9
2.7.0
2.8.0
2.9.0
3.*
3.0.0
3.0.1
3.1.0
3.1.1
3.1.2
3.1.3
3.2.0
3.2.1
3.3.0
3.4.0
3.4.1
3.5.0
3.5.1
3.6.0
3.7.0
3.7.1
3.8.0
3.9.0
4.*
4.0.0
4.1.0
4.1.1
4.2.0
4.2.1
4.3.0
4.3.1
4.4.0
4.5.1
5.*
5.0.0
5.1.0
5.1.1
5.2.0
5.2.1
5.3.0
5.3.1
5.4.0
5.4.0-git
5.4.2
5.5.0
5.5.2
5.5.4
5.6.0
5.6.2
Other
Continuous-Windows
continuous
radare2-windows-nightly
termux
release-5.*
release-5.0.0
Database specific
vanir_signatures
[
{
"signature_type": "Line",
"source": "https://github.com/radareorg/radare2/commit/634b886e84a5c568d243e744becc6b3223e089cf",
"deprecated": false,
"digest": {
"line_hashes": [
"47344566688516807668194248249276721420",
"58986536819994750288512137667554801426",
"306217441268716074933427106058508349600",
"54929083239624682082569503422021429670",
"333179222065098045119720406159934153866",
"248822377666519014040281049346020683512",
"155062077761720526503875604536567513445",
"115022175030711746535011408657884596637",
"102063969871050473634302641027792261657",
"135825867790869029654625202747409914514",
"138927644343023524362272162524149058689",
"212850074054075928602528035380499062838",
"253518104369833477071450790505810447889"
],
"threshold": 0.9
},
"id": "CVE-2022-0695-08cb3bb9",
"signature_version": "v1",
"target": {
"file": "libr/util/buf.c"
}
},
{
"signature_type": "Line",
"source": "https://github.com/radareorg/radare2/commit/634b886e84a5c568d243e744becc6b3223e089cf",
"deprecated": false,
"digest": {
"line_hashes": [
"305573085259933121913274619715974468906",
"271387537578080526916362001082577543348",
"253823111676986286538183119406981069992",
"53413135549291873671522654952180006007",
"305573085259933121913274619715974468906",
"70272811867698673270174983141991988698",
"177082536490215008603356925579104315533",
"174803248040755559613280993254380442995"
],
"threshold": 0.9
},
"id": "CVE-2022-0695-09c4cce4",
"signature_version": "v1",
"target": {
"file": "libr/bin/p/bin_psxexe.c"
}
},
{
"signature_type": "Function",
"source": "https://github.com/radareorg/radare2/commit/634b886e84a5c568d243e744becc6b3223e089cf",
"deprecated": false,
"digest": {
"function_hash": "177510697255455210678387588634678543520",
"length": 1784.0
},
"id": "CVE-2022-0695-1ce3b4f6",
"signature_version": "v1",
"target": {
"function": "estimate_slide",
"file": "libr/bin/p/bin_dyldcache.c"
}
},
{
"signature_type": "Function",
"source": "https://github.com/radareorg/radare2/commit/634b886e84a5c568d243e744becc6b3223e089cf",
"deprecated": false,
"digest": {
"function_hash": "187095708764336285590781181115863526447",
"length": 1324.0
},
"id": "CVE-2022-0695-265aaabc",
"signature_version": "v1",
"target": {
"function": "lmf_header_load",
"file": "libr/bin/p/bin_qnx.c"
}
},
{
"signature_type": "Function",
"source": "https://github.com/radareorg/radare2/commit/634b886e84a5c568d243e744becc6b3223e089cf",
"deprecated": false,
"digest": {
"function_hash": "81517255284913446724000196033065256553",
"length": 552.0
},
"id": "CVE-2022-0695-276ace13",
"signature_version": "v1",
"target": {
"function": "entries",
"file": "libr/bin/p/bin_psxexe.c"
}
},
{
"signature_type": "Line",
"source": "https://github.com/radareorg/radare2/commit/634b886e84a5c568d243e744becc6b3223e089cf",
"deprecated": false,
"digest": {
"line_hashes": [
"310682320324213191179772688908583571878",
"133425846643959127852823539654952135466",
"31690179338187621759609352811458183047",
"298170457918005046664196405282248310801",
"183571484266940429054021282787429433171",
"315919823989598430319239152483961058318",
"316326130367171411366464423890561733854",
"88490583008196604531489418732856964022",
"232894800114899043147658750580064461034",
"340057079646081181816810702432879769296",
"129004840165607125270577082057306355436",
"14662905962783011618708998085612813446",
"171561840514024315406081147207427331551",
"175154457147685298691019082421165526709",
"26020872638888349917983053807904626754",
"59051751520884695517408211463341680818",
"30828415162134256613498020705739572312",
"222624161025921006884352730579560758267",
"117887368332267321866662481580709772246",
"31827038205992803340324163047270418011",
"156571130000672952031236009236063756666",
"59816585783616665275757636244403936995",
"48560175642950191383899026087357715043",
"224617791870548070446168721024354263409",
"45711051977531388368800282090565475078",
"264232616693204557221759237984017274728",
"77406864965538206043232798094874911479",
"312990392030309585276398625662516242226",
"66379776147653202137582174702263422871",
"235603508420820358147848921434339604161",
"274407112428775615558460322614723441475"
],
"threshold": 0.9
},
"id": "CVE-2022-0695-31c60812",
"signature_version": "v1",
"target": {
"file": "libr/bin/format/pe/pe.c"
}
},
{
"signature_type": "Function",
"source": "https://github.com/radareorg/radare2/commit/634b886e84a5c568d243e744becc6b3223e089cf",
"deprecated": false,
"digest": {
"function_hash": "142618783189956649671297331556646627388",
"length": 3621.0
},
"id": "CVE-2022-0695-57ceba43",
"signature_version": "v1",
"target": {
"function": "bin_pe_parse_imports",
"file": "libr/bin/format/pe/pe.c"
}
},
{
"signature_type": "Line",
"source": "https://github.com/radareorg/radare2/commit/634b886e84a5c568d243e744becc6b3223e089cf",
"deprecated": false,
"digest": {
"line_hashes": [
"102591397205450187408663470025594459007",
"194247660061772363431369432538860949314",
"225957710914291298913029667109704394492",
"6142311181109616553176225882470150265"
],
"threshold": 0.9
},
"id": "CVE-2022-0695-5aa8a8af",
"signature_version": "v1",
"target": {
"file": "libr/bin/p/bin_dyldcache.c"
}
},
{
"signature_type": "Function",
"source": "https://github.com/radareorg/radare2/commit/634b886e84a5c568d243e744becc6b3223e089cf",
"deprecated": false,
"digest": {
"function_hash": "175856555561179362596295743910959113604",
"length": 825.0
},
"id": "CVE-2022-0695-69bbc093",
"signature_version": "v1",
"target": {
"function": "(check_unknow)",
"file": "libr/bin/format/pe/pe.c"
}
},
{
"signature_type": "Function",
"source": "https://github.com/radareorg/radare2/commit/634b886e84a5c568d243e744becc6b3223e089cf",
"deprecated": false,
"digest": {
"function_hash": "208884253562262403879058515739438436647",
"length": 1499.0
},
"id": "CVE-2022-0695-6c1e748f",
"signature_version": "v1",
"target": {
"function": "buf_format",
"file": "libr/util/buf.c"
}
},
{
"signature_type": "Function",
"source": "https://github.com/radareorg/radare2/commit/634b886e84a5c568d243e744becc6b3223e089cf",
"deprecated": false,
"digest": {
"function_hash": "132538493967695065993944327014383415424",
"length": 384.0
},
"id": "CVE-2022-0695-74b81622",
"signature_version": "v1",
"target": {
"function": "r_buf_fread_at",
"file": "libr/util/buf.c"
}
},
{
"signature_type": "Function",
"source": "https://github.com/radareorg/radare2/commit/634b886e84a5c568d243e744becc6b3223e089cf",
"deprecated": false,
"digest": {
"function_hash": "199499615705159506383877203115806033223",
"length": 1342.0
},
"id": "CVE-2022-0695-9651e820",
"signature_version": "v1",
"target": {
"function": "(check_mingw)",
"file": "libr/bin/format/pe/pe.c"
}
},
{
"signature_type": "Line",
"source": "https://github.com/radareorg/radare2/commit/634b886e84a5c568d243e744becc6b3223e089cf",
"deprecated": false,
"digest": {
"line_hashes": [
"188487179260515267592711439450649341282",
"224015284417298011228400419867624385882",
"97166748907485180106236004577024539935",
"85096874465998047904331516967846913700",
"90964741237586059203964940536848262590",
"119249896899101167426633292469837981483",
"262555831415066974000248367653370280531",
"228934835585992509520922704864800294596",
"37914609826310801348728714138968583506",
"74331112152824095092018097612684588205",
"12751121839288050923169464891854371465",
"28066816782538232518072067607266597095",
"79263400230792872766185882628182688836",
"264420908444431381660356283805792824797",
"64662378915667075662002166396913831344",
"168278810787650795685730333697633093554",
"19150609895905306264175623253356677850",
"75529889828712424897880498833552489257",
"121480922174211822381729235299131154767",
"202163496243047625967840212170955824622",
"90142962403970639155955129872175688144",
"149822771244170476585481628811098964290",
"231309325001318683157583436266867568629",
"72784854864082366974917400584668162915",
"250987869633557028674193062676307334944",
"215309270083051661700534018414636275597",
"231309325001318683157583436266867568629",
"72784854864082366974917400584668162915"
],
"threshold": 0.9
},
"id": "CVE-2022-0695-a0f9ae47",
"signature_version": "v1",
"target": {
"file": "libr/bin/p/bin_qnx.c"
}
},
{
"signature_type": "Function",
"source": "https://github.com/radareorg/radare2/commit/634b886e84a5c568d243e744becc6b3223e089cf",
"deprecated": false,
"digest": {
"function_hash": "30617092331220063316388668969709515181",
"length": 2655.0
},
"id": "CVE-2022-0695-a360e736",
"signature_version": "v1",
"target": {
"function": "load_buffer",
"file": "libr/bin/p/bin_qnx.c"
}
},
{
"signature_type": "Function",
"source": "https://github.com/radareorg/radare2/commit/634b886e84a5c568d243e744becc6b3223e089cf",
"deprecated": false,
"digest": {
"function_hash": "106183731382772154099844995693593740674",
"length": 763.0
},
"id": "CVE-2022-0695-b88ff1c7",
"signature_version": "v1",
"target": {
"function": "sections",
"file": "libr/bin/p/bin_psxexe.c"
}
},
{
"signature_type": "Function",
"source": "https://github.com/radareorg/radare2/commit/634b886e84a5c568d243e744becc6b3223e089cf",
"deprecated": false,
"digest": {
"function_hash": "218167515244704647141172745495523055460",
"length": 2069.0
},
"id": "CVE-2022-0695-f59123e3",
"signature_version": "v1",
"target": {
"function": "Pe_r_bin_pe_parse_var",
"file": "libr/bin/format/pe/pe.c"
}
}
]
Git / github.com/radareorg/radare2
Affected ranges
- Type
- GIT
- Repo
- https://github.com/radare/radare2
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
0.*
0.10.0
0.10.1
0.10.2
0.10.3
0.10.4
0.10.4-termux4
0.10.5
0.10.6
0.8.6
0.8.8
0.9
0.9.2
0.9.4
0.9.6
0.9.7
0.9.8
0.9.8-rc1
0.9.8-rc2
0.9.8-rc3
0.9.8-rc4
0.9.9
1.*
1.0
1.0.0
1.0.1
1.0.2
1.1.0
1.2.0
1.2.0-git
1.3.0
1.3.0-git
1.4.0
1.5.0
1.6.0
2.*
2.0.0
2.0.1
2.1.0
2.2.0
2.4.0
2.5.0
2.6.0
2.6.9
2.7.0
2.8.0
2.9.0
3.*
3.0.0
3.0.1
3.1.0
3.1.1
3.1.2
3.1.3
3.2.0
3.2.1
3.3.0
3.4.0
3.4.1
3.5.0
3.5.1
3.6.0
3.7.0
3.7.1
3.8.0
3.9.0
4.*
4.0.0
4.1.0
4.1.1
4.2.0
4.2.1
4.3.0
4.3.1
4.4.0
4.5.1
5.*
5.0.0
5.1.0
5.1.1
5.2.0
5.2.1
5.3.0
5.3.1
5.4.0
5.4.0-git
5.4.2
5.5.0
5.5.2
5.5.4
5.6.0
5.6.2
Other
Continuous-Windows
continuous
radare2-windows-nightly
termux
release-5.*
release-5.0.0