Macromachine

**Name of the Vulnerable Software and Affected Versions** radare2 version 2.7.0 **Description** The issue is related to a denial of service caused by an invalid read and application crash. This occurs when a crafted ELF file is processed due to missing input validation in the `r bin dwarf parse comp unit` function in `libr/bin/dwarf.c`, which is called by the `sdb set internal` function in `sdb.c`. **Recommendations** For radare2 version 2.7.0, consider restricting the use of the `sdb set internal` function until a patch is available, or avoid processing untrusted ELF files to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** radare2 version 2.7.0 **Description** The issue allows remote attackers to cause a denial of service, resulting in a heap-based buffer over-read and application crash, via a crafted Mini Crash Dump file. This is related to the `r bin mdmp init directory entry` function in `mdmp.c`. **Recommendations** For radare2 version 2.7.0, consider avoiding the use of the `r bin mdmp init directory entry` function until a patch is available. As a temporary workaround, restrict the processing of crafted Mini Crash Dump files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** radare2 version 2.7.0 **Description** The issue is related to a denial of service (heap-based buffer over-read and application crash) that can be caused by remote attackers via a crafted .class file. This is due to missing input validation in the `r bin java line number table attr new` function within the `r bin java annotation new` function in shlr/java/class.c. **Recommendations** For radare2 version 2.7.0, consider applying input validation to the `r bin java line number table attr new` function to prevent the heap-based buffer over-read. As a temporary workaround, restrict the processing of crafted .class files until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.