Debian Package Tracker

general

source: radare2 (main)
version: 4.0.0+dfsg-1
maintainer: Debian Security Tools (DMD)
uploaders: Sebastian Reichel [DMD]
arch: all any
std-ver: 4.4.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 0.9.6-3.1+deb8u1
unstable: 4.0.0+dfsg-1

versioned links

0.9.6-3.1+deb8u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
3.2.1+dfsg-5: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
3.9.0+dfsg-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.0.0+dfsg-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

libradare2-4.0
libradare2-common
libradare2-dev
radare2

action needed

A new upstream version is available: 4.2.1 high

A new upstream version 4.2.1 is available, you should consider packaging it.

Created: 2019-02-21 Last update: 2020-02-18 06:35

2 security issues in sid high

There are 2 open security issues in sid.

2 important issues:

CVE-2019-19647: radare2 through 4.0.0 lacks validation of the content variable in the function r_asm_pseudo_incbin at libr/asm/asm.c, ultimately leading to an arbitrary write. This allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via crafted input.
CVE-2019-19590: In radare2 through 4.0, there is an integer overflow for the variable new_token_size in the function r_asm_massemble at libr/asm/asm.c. This integer overflow will result in a Use-After-Free for the buffer tokens, which can be filled with arbitrary malicious data after the free. This allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via crafted input.

Please fix them.

Created: 2019-06-11 Last update: 2020-02-14 06:35

36 security issues in jessie high

There are 36 open security issues in jessie.

3 important issues:

CVE-2019-14745: In radare2 before 3.7.0, a command injection vulnerability exists in bin_symbols() in libr/core/cbin.c. By using a crafted executable file, it's possible to execute arbitrary shell commands with the permissions of the victim. This vulnerability is due to improper handling of symbol names embedded in executables.
CVE-2019-19647: radare2 through 4.0.0 lacks validation of the content variable in the function r_asm_pseudo_incbin at libr/asm/asm.c, ultimately leading to an arbitrary write. This allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via crafted input.
CVE-2019-19590: In radare2 through 4.0, there is an integer overflow for the variable new_token_size in the function r_asm_massemble at libr/asm/asm.c. This integer overflow will result in a Use-After-Free for the buffer tokens, which can be filled with arbitrary malicious data after the free. This allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via crafted input.

33 issues skipped by the security teams:

CVE-2017-16805: In radare2 2.0.1, libr/bin/dwarf.c allows remote attackers to cause a denial of service (invalid read and application crash) via a crafted ELF file, related to r_bin_dwarf_parse_comp_unit in dwarf.c and sdb_set_internal in shlr/sdb/src/sdb.c.
CVE-2018-11377: The avr_op_analyze() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted binary file.
CVE-2018-11376: The r_read_le32() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted ELF file.
CVE-2018-11379: The get_debug_info() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted PE file.
CVE-2017-6197: The r_read_* functions in libr/include/r_endian.h in radare2 1.2.1 allow remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted binary file, as demonstrated by the r_read_le32 function.
CVE-2017-10929: The grub_memmove function in shlr/grub/kern/misc.c in radare2 1.5.0 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted binary file, possibly related to a read overflow in the grub_disk_read_small_real function in kern/disk.c in GNU GRUB 2.02.
CVE-2018-11383: The r_strbuf_fini() function in radare2 2.5.0 allows remote attackers to cause a denial of service (invalid free and application crash) via a crafted ELF file because of an uninitialized variable in the CPSE handler in libr/anal/p/anal_avr.c.
CVE-2017-9949: The grub_memmove function in shlr/grub/kern/misc.c in radare2 1.5.0 allows remote attackers to cause a denial of service (stack-based buffer underflow and application crash) or possibly have unspecified other impact via a crafted binary file, possibly related to a buffer underflow in fs/ext2.c in GNU GRUB 2.02.
CVE-2018-12322: There is a heap out of bounds read in radare2 2.6.0 in _6502_op() in libr/anal/p/anal_6502.c via a crafted iNES ROM binary file.
CVE-2018-12321: There is a heap out of bounds read in radare2 2.6.0 in java_switch_op() in libr/anal/p/anal_java.c via a crafted Java binary file.
CVE-2018-12320: There is a use after free in radare2 2.6.0 in r_anal_bb_free() in libr/anal/bb.c via a crafted Java binary file.
CVE-2018-8808: In radare2 2.4.0, there is a heap-based buffer over-read in the r_asm_disassemble function of asm.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted dex file.
CVE-2018-8809: In radare2 2.4.0, there is a heap-based buffer over-read in the dalvik_op function of anal_dalvik.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted dex file.
CVE-2018-11380: The parse_import_ptr() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted Mach-O file.
CVE-2018-11381: The string_scan_range() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted binary file.
CVE-2017-6448: The dalvik_disassemble function in libr/asm/p/asm_dalvik.c in radare2 1.2.1 allows remote attackers to cause a denial of service (stack-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted DEX file.
CVE-2018-11384: The sh_op() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted ELF file.
CVE-2017-9763: The grub_ext2_read_block function in fs/ext2.c in GNU GRUB before 2013-11-12, as used in shlr/grub/fs/ext2.c in radare2 1.5.0, allows remote attackers to cause a denial of service (excessive stack use and application crash) via a crafted binary file, related to use of a variable-size stack array.
CVE-2017-9762: The cmd_info function in libr/core/cmd_info.c in radare2 1.5.0 allows remote attackers to cause a denial of service (use-after-free and application crash) via a crafted binary file.
CVE-2017-9761: The find_eoq function in libr/core/cmd.c in radare2 1.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted binary file.
CVE-2018-14017: The r_bin_java_annotation_new function in shlr/java/class.c in radare2 2.7.0 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted .class file because of missing input validation in r_bin_java_line_number_table_attr_new.
CVE-2017-9520: The r_config_set function in libr/config/config.c in radare2 1.5.0 allows remote attackers to cause a denial of service (use-after-free and application crash) via a crafted DEX file.
CVE-2018-14015: The sdb_set_internal function in sdb.c in radare2 2.7.0 allows remote attackers to cause a denial of service (invalid read and application crash) via a crafted ELF file because of missing input validation in r_bin_dwarf_parse_comp_unit in libr/bin/dwarf.c.
CVE-2019-12790: In radare2 through 3.5.1, there is a heap-based buffer over-read in the r_egg_lang_parsechar function of egg_lang.c. This allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact because of missing length validation in libr/egg/egg.c.
CVE-2019-12802: In radare2 through 3.5.1, the rcc_context function of libr/egg/egg_lang.c mishandles changing context. This allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact (invalid memory access in r_egg_lang_parsechar; invalid free in rcc_pusharg).
CVE-2018-10187: In radare2 2.5.0, there is a heap-based buffer over-read in the dalvik_op function (libr/anal/p/anal_dalvik.c). Remote attackers could leverage this vulnerability to cause a denial of service via a crafted DEX file. Note that this issue is different from CVE-2018-8809, which was patched earlier.
CVE-2018-10186: In radare2 2.5.0, there is a heap-based buffer over-read in the r_hex_bin2str function (libr/util/hex.c). Remote attackers could leverage this vulnerability to cause a denial of service via a crafted DEX file. This issue is different from CVE-2017-15368.
CVE-2015-2305: Integer overflow in the regcomp implementation in the Henry Spencer BSD regex library (aka rxspencer) alpha3.8.g5 on 32-bit platforms, as used in NetBSD through 6.1.5 and other products, might allow context-dependent attackers to execute arbitrary code via a large regular expression that leads to a heap-based buffer overflow.
CVE-2018-14016: The r_bin_mdmp_init_directory_entry function in mdmp.c in radare2 2.7.0 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted Mini Crash Dump file.
CVE-2019-12829: radare2 through 3.5.1 mishandles the RParse API, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact, as demonstrated by newstr buffer overflows during replace operations. This affects libr/asm/asm.c and libr/parse/parse.c.
CVE-2019-12865: In radare2 through 3.5.1, cmd_mount in libr/core/cmd_mount.c has a double free for the ms command.
CVE-2018-8810: In radare2 2.4.0, there is a heap-based buffer over-read in the get_ivar_list_t function of mach0_classes.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted Mach-O file.
CVE-2017-7946: The get_relocs_64 function in libr/bin/format/mach0/mach0.c in radare2 1.3.0 allows remote attackers to cause a denial of service (use-after-free and application crash) via a crafted Mach0 file.

Please fix them.

Created: 2015-07-12 Last update: 2020-02-14 06:35

The package has not entered testing even though the delay is over normal

The package has not entered testing even though the 5-day delay is over. Check why.

Created: 2020-01-10 Last update: 2020-02-18 08:03

version in VCS is newer than in repository, is it time to upload? normal

vcswatch reports that this package seems to have a new changelog entry (version 4.2.1+dfsg-1, distribution unstable) and new commits in its VCS. You should consider whether it's time to make an upload.

Created: 2020-02-03 Last update: 2020-02-14 00:34

Build log checks report 2 warnings low

Build log checks report 2 warnings

Created: 2017-10-26 Last update: 2019-02-05 14:53

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.5.0 instead of 4.4.0).

Created: 2019-07-08 Last update: 2020-01-21 05:06

testing migrations

excuses:
- Migration status for radare2 (- to 4.0.0+dfsg-1): BLOCKED: Rejected/violates migration policy/introduces a regression
- Issues preventing migration:
- Updating radare2 introduces new bugs: #950372
- Not built on buildd: arch amd64 binaries uploaded by sre
- Not built on buildd: arch all binaries uploaded by sre, a new source-only upload is needed to allow migration
- missing build on i386
- Additional info:
- Piuparts tested OK - https://piuparts.debian.org/sid/source/r/radare2.html
- 44 days old (needed 5 days)
- Not considered

news

[rss feed]

[2020-02-14] radare2 REMOVED from testing (Debian testing watch)
[2020-01-04] Accepted radare2 4.0.0+dfsg-1 (source amd64 all) into unstable, unstable (Sebastian Reichel)
[2020-01-03] Accepted radare2 3.9.0+dfsg-1 (source amd64 all) into unstable, unstable (Sebastian Reichel)
[2020-01-03] Accepted radare2 3.8.0+dfsg-1 (source amd64 all) into unstable, unstable (Sebastian Reichel)
[2019-03-13] radare2 3.2.1+dfsg-5 MIGRATED to testing (Debian testing watch)
[2019-03-02] Accepted radare2 3.2.1+dfsg-5 (source) into unstable (Hilko Bengen)
[2019-02-11] radare2 3.2.1+dfsg-4 MIGRATED to testing (Debian testing watch)
[2019-02-05] Accepted radare2 3.2.1+dfsg-4 (source amd64 all) into unstable (Sebastian Reichel)
[2019-02-05] Accepted radare2 3.2.1+dfsg-3 (source amd64 all) into unstable (Sebastian Reichel)
[2019-01-31] radare2 3.2.1+dfsg-2 MIGRATED to testing (Debian testing watch)
[2019-01-26] Accepted radare2 3.2.1+dfsg-2 (source) into unstable (Hilko Bengen)
[2019-01-25] Accepted radare2 3.2.1+dfsg-1 (source amd64) into unstable, unstable (Hilko Bengen)
[2018-12-21] radare2 3.1.2+dfsg-1.1 MIGRATED to testing (Debian testing watch)
[2018-12-16] Accepted radare2 3.1.2+dfsg-1.1 (source) into unstable (Iain Lane)
[2018-12-04] Accepted radare2 3.1.2+dfsg-1 (source amd64 all) into unstable (Sebastian Reichel)
[2018-12-03] Accepted radare2 3.1.0+dfsg-1 (source amd64 all) into unstable, unstable (Sebastian Reichel)
[2018-10-26] radare2 3.0.1+dfsg-1 MIGRATED to testing (Debian testing watch)
[2018-10-21] Accepted radare2 3.0.1+dfsg-1 (source amd64 all) into unstable (Sebastian Reichel)
[2018-10-17] Accepted radare2 3.0.0+dfsg-1 (source amd64 all) into unstable, unstable (Sebastian Reichel)
[2018-09-10] radare2 2.9.0+dfsg-1 MIGRATED to testing (Debian testing watch)
[2018-09-05] Accepted radare2 2.9.0+dfsg-1 (source amd64 all) into unstable, unstable (Sebastian Reichel)
[2018-08-14] radare2 2.8.0+dfsg-1 MIGRATED to testing (Debian testing watch)
[2018-08-09] Accepted radare2 2.8.0+dfsg-1 (source amd64 all) into unstable, unstable (Sebastian Reichel)
[2018-07-21] radare2 2.7.0+dfsg-1 MIGRATED to testing (Debian testing watch)
[2018-07-12] Accepted radare2 2.7.0+dfsg-1 (source amd64 all) into unstable, unstable (Sebastian Reichel)
[2018-06-18] Accepted radare2 2.6.0+dfsg-1 (source amd64 all) into unstable, unstable (Sebastian Reichel)
[2018-03-11] radare2 2.4.0+dfsg-1 MIGRATED to testing (Debian testing watch)
[2018-03-06] Accepted radare2 2.4.0+dfsg-1 (source amd64 all) into unstable, unstable (Sebastian Reichel)
[2018-02-23] Accepted radare2 2.3.0+dfsg-2 (source amd64 all) into unstable (Sebastian Reichel)
[2018-02-21] radare2 2.3.0+dfsg-1 MIGRATED to testing (Debian testing watch)

bugs [bug history graph]

all: 3
RC: 1
I&N: 2
M&W: 0
F&P: 0
patch: 0

links

homepage
buildd: logs, checks, clang, cross
popcon
browse source code
edit tags
security tracker
screenshots