Kobrineli

**Name of the Vulnerable Software and Affected Versions** Rizin versions 0.4.0 and prior **Description** Rizin is a UNIX-like reverse engineering framework and command-line toolset. The issue arises from an out-of-bounds write when getting data from Luac files. A user opening a malicious Luac file could be affected, allowing an attacker to execute code on the user's machine. **Recommendations** For Rizin versions 0.4.0 and prior, update to a version that includes the fixes from commits 07b43bc8aa1ffebd9b68d60624c9610cf7e460c7 and 05bbd147caccc60162d6fba9baaaf24befa281cd to resolve the issue. As a temporary workaround, consider avoiding the use of Rizin to open Luac files from untrusted sources until the update is applied.