1
Candidate: CVE-2017-6448
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6448
6
The dalvik_disassemble function in libr/asm/p/asm_dalvik.c in radare2 1.2.1
7
allows remote attackers to cause a denial of service (stack-based buffer
8
overflow and application crash) or possibly have unspecified other impact
9
via a crafted DEX file.
13
https://github.com/radare/radare2/issues/6885
19
upstream: https://github.com/radare/radare2/commit/f41e941341e44aa86edd4483c4487ec09a074257 (1.3.0-git)
20
upstream: https://github.com/radare/radare2/commit/f41e941341e44aa86edd4483c4487ec09a074257
21
upstream_radare2: released (1.1.0+dfsg-4)
22
precise_radare2: released (0.9-3+deb7u2build0.12.04.1)
23
precise/esm_radare2: DNE (precise was released [0.9-3+deb7u2build0.12.04.1])
24
trusty_radare2: needed
25
vivid/stable-phone-overlay_radare2: DNE
26
vivid/ubuntu-core_radare2: DNE
27
xenial_radare2: needed
28
yakkety_radare2: ignored (reached end-of-life)
29
zesty_radare2: ignored (reached end-of-life)
30
artful_radare2: needed
31
bionic_radare2: needed