Heap-based OOB write when parsing dwarf DIE info in Rizin
CVE-2021-43814

7.7HIGH

Key Information:

Vendor

Rizinorg

Status
Rizin
Vendor
CVE Published:
13 December 2021

What is CVE-2021-43814?

Rizin is a UNIX-like reverse engineering framework and command-line toolset. In versions up to and including 0.3.1 there is a heap-based out of bounds write in parse_die() when reversing an AMD64 ELF binary with DWARF debug info. When a malicious AMD64 ELF binary is opened by a victim user, Rizin may crash or execute unintended actions. No workaround are known and users are advised to upgrade.

Affected Version(s)

rizin <= 0.3.1

References

https://github.com/rizinorg/rizin/security/advisories/GHS...
x_refsource_CONFIRM
https://github.com/rizinorg/rizin/issues/2083
x_refsource_MISC
https://github.com/rizinorg/rizin/commit/aa6917772d2f32e5...
x_refsource_MISC

CVSS V3.1

Score:
7.7
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
None
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.