Vulnerability Description
A segmentation fault was discovered in radare2 with adf command. In libr/core/cmd_anal.c, when command "adf" has no or wrong argument, anal_fcn_data (core, input + 1) --> RAnalFunction *fcn = r_anal_get_fcn_in (core->anal, core->offset, -1); returns null pointer for fcn causing segmentation fault later in ensure_fcn_range (fcn).
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Radare | Radare2 | < 4.4.0 |
Related Weaknesses (CWE)
References
- https://github.com/radareorg/radare2/commit/4d3811681a80f92a53e795f6a64c4b0fc2c8PatchThird Party Advisory
- https://github.com/radareorg/radare2/issues/16215ExploitIssue TrackingPatch
- https://github.com/radareorg/radare2/pull/16230Issue TrackingPatchThird Party Advisory
- https://github.com/radareorg/radare2/commit/4d3811681a80f92a53e795f6a64c4b0fc2c8PatchThird Party Advisory
- https://github.com/radareorg/radare2/issues/16215ExploitIssue TrackingPatch
- https://github.com/radareorg/radare2/pull/16230Issue TrackingPatchThird Party Advisory
FAQ
What is CVE-2020-27795?
CVE-2020-27795 is a vulnerability with a CVSS score of 7.5 (HIGH). A segmentation fault was discovered in radare2 with adf command. In libr/core/cmd_anal.c, when command "adf" has no or wrong argument, anal_fcn_data (core, input + 1) --> RAnalFunction *fcn = r_anal_g...
How severe is CVE-2020-27795?
CVE-2020-27795 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-27795?
Check the references section above for vendor advisories and patch information. Affected products include: Radare Radare2.