Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.9.0. According to comments in the Huntr bug report and github commit, this is an OOBREAD in the heap, which causes an UB when disassembling an instruction using the Java decoder. So it may not be exploitable because it just returns an invalid value instead of "not enough bytes to decode the instruction". The issue has been fixed in radare2 5.9.0. References: - https://github.com/radareorg/radare2/commit/1bdda93e348c160c84e30da3637acef26d0348de - https://huntr.com/bounties/bbfe1f76-8fa1-4a8c-909d-65b16e970be0 - https://nvd.nist.gov/vuln/detail/CVE-2023-5686
Created radare2 tracking bugs for this issue: Affects: epel-all [bug 2245329] Affects: fedora-all [bug 2245330]