H4Ng3R

**Name of the Vulnerable Software and Affected Versions** radare2 version 1.2.1 **Description** The issue allows remote attackers to cause a denial of service, resulting in a NULL pointer dereference and application crash, via a crafted DEX file. This is due to a problem in the dex parse debug item function in libr/bin/p/bin dex.c. **Recommendations** For radare2 version 1.2.1, consider avoiding the use of the dex parse debug item function until a patch is available. As a temporary workaround, restrict the processing of crafted DEX files to minimize the risk of exploitation.