CVE-2021-4021
24.02.2022, 19:15
A vulnerability was found in Radare2 in versions prior to 5.6.2, 5.6.0, 5.5.4 and 5.5.2. Mapping a huge section filled with zeros of an ELF64 binary for MIPS architecture can lead to uncontrolled resource consumption and DoS.Enginsight
| Vendor | Product | Version |
|---|---|---|
| radare | radare2 | 𝑥 ≤ 5.5.0 |
𝑥
= Vulnerable software versions
Ubuntu Releases
Common Weakness Enumeration
- CWE-400 - Uncontrolled Resource ConsumptionThe software does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.
- CWE-834 - Excessive IterationThe software performs an iteration or loop without sufficiently limiting the number of times that the loop is executed.