Radare2 · Radare2 · CVE-2024-26475
**Name of the Vulnerable Software and Affected Versions**
radare2 versions 0.9.7 through 5.8.6
**Description**
An issue in radare2 allows a local attacker to cause a denial of service via the `grub sfs read extent` function. This issue enables a local attacker to disrupt the service.
**Recommendations**
For versions 0.9.7 through 5.8.6, update to version 5.8.8 to resolve the issue.
As a temporary workaround, consider disabling the use of the `grub sfs read extent` function until a patch is available.