CVE-2025-5642 | Radare2 5.9.9 radiff2 memory corruption (Issue 24231)

A vulnerability classified as problematic has been found in Radare2 5.9.9. Affected is an unknown function of the component radiff2. The manipulation leads to memory corruption.

This vulnerability is traded as CVE-2025-5642. The attack needs to be approached locally. Furthermore, there is an exploit available.

The real existence of this vulnerability is still doubted at the moment.

It is recommended to apply a patch to fix this issue.

The documentation explains that the parameter -T is experimental and “crashy”. Further analysis has shown “the race is not a real problem unless you use asan”. A new warning has been added.

CVE-2025-5642 | Radare2 5.9.9 radiff2 memory corruption (Issue 24231)

Post correlati

CVE-2024-28854 | tmccombs tls-listener up to 0.9.x TlsListener::new Slowloris resource consumption (GHSA-2qph-qpvm-2qf7)

CVE-2025-22247 | VMware Tools up to 12.5.1 File link following

CVE-2025-1738 | TrivisionSecurity Trivision Camera NC227WF up to 5.7.x get request method with sensitive query strings

CVE-2024-49632 | Coral Web Design CWD 3D Image Gallery Plugin up to 1.0 on WordPress cross site scripting