漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Heap buffer overflow in libr/bin/format/mach0/mach0.c in radareorg/radare2
Vulnerability Description
Heap buffer overflow in libr/bin/format/mach0/mach0.c in GitHub repository radareorg/radare2 prior to 5.8.6. If address sanitizer is disabled during the compiling, the program should executes into the `r_str_ncpy` function. Therefore I think it is very likely to be exploitable. For more general description of heap buffer overflow, see [CWE](https://cwe.mitre.org/data/definitions/122.html).
CVSS Information
N/A
Vulnerability Type
堆缓冲区溢出
Vulnerability Title
radare2 缓冲区错误漏洞
Vulnerability Description
radare2是一套用于处理二进制文件的库和工具。 radare2 存在安全漏洞,该漏洞源于如果在编译期间禁用了地址清理程序,程序应该执行到r_str_ncpy函数。
CVSS Information
N/A
Vulnerability Type
N/A