Your message dated Sun, 12 Jul 2026 19:09:02 +0000
with message-id <[email protected]>
and subject line Bug#1141644: fixed in radare2 6.1.8+ds-1
has caused the Debian Bug report #1141644,
regarding radare2: CVE-2026-14757 CVE-2026-14758 CVE-2026-14759 CVE-2026-14760 
CVE-2026-14761 CVE-2026-14786 CVE-2026-14787 CVE-2026-14788 CVE-2026-14789
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
1141644: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1141644
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Source: radare2
Version: 6.1.6+ds-3
Severity: grave
Tags: security upstream
X-Debbugs-Cc: [email protected], Debian Security Team <[email protected]>

Hi,

The following vulnerabilities were published for radare2.

CVE-2026-14757[0]:
| A vulnerability was determined in radareorg radare2 up to 6.1.6.
| This affects the function core_anal_bytes of the file
| libr/core/cmd_anal.inc. This manipulation causes integer overflow.
| The attack needs to be launched locally. The exploit has been
| publicly disclosed and may be utilized. It is suggested to install a
| patch to address this issue.


CVE-2026-14758[1]:
| A vulnerability was identified in radareorg radare2 up to 6.1.6.
| This vulnerability affects the function cmd_anal_opcode of the file
| libr/core/cmd_anal.inc.c of the component hexpairs Parser. Such
| manipulation leads to integer overflow. The attack needs to be
| performed locally. The exploit is publicly available and might be
| used. The name of the patch is
| 84e773986e7e5bb30453a9384f498ec0ccc9d0a9. A patch should be applied
| to remediate this issue.


CVE-2026-14759[2]:
| A security flaw has been discovered in radareorg radare2 up to
| 6.1.6. This issue affects the function
| r_bin_java_inner_classes_attr_calc_size of the file
| shlr/java/class.c of the component RBinJava Line Number Table
| Parser. Performing a manipulation results in heap-based buffer
| overflow. The attack requires a local approach. The exploit has been
| released to the public and may be used for attacks. The patch is
| named cd62d15a6cbecdc67fd03f3ebdbbbeb741d18f87. To fix this issue,
| it is recommended to deploy a patch.


CVE-2026-14760[3]:
| A weakness has been identified in radareorg radare2 up to 6.1.6.
| Impacted is the function r_core_seek_arch_bits of the file
| libr/core/disasm.c of the component regprofile Handler. Executing a
| manipulation can lead to use after free. The attack requires local
| access. The exploit has been made available to the public and could
| be used for attacks. This patch is called
| 8b25c773785d85cb0103410a0905089d286921c2. It is advisable to
| implement a patch to correct this issue.


CVE-2026-14761[4]:
| A security vulnerability has been detected in radareorg radare2 up
| to 6.1.6. The affected element is the function
| r_str_ndup/r_str_append of the file libr/util/str.c. The
| manipulation leads to integer overflow. An attack has to be
| approached locally. The exploit has been disclosed publicly and may
| be used. The identifier of the patch is
| a20a56917ae85d732e683f8d9078bdcfee92446c. Applying a patch is the
| recommended action to fix this issue.


CVE-2026-14786[5]:
| A security flaw has been discovered in radareorg radare2 up to
| 6.1.6. This impacts the function r_str_word_get0set of the file
| libr/util/str.c. The manipulation results in integer overflow. The
| attack must be initiated from a local position. The exploit has been
| released to the public and may be used for attacks. The patch is
| identified as 11ac224c0eb8d57830fccc99e1c1cd8e5d958813. It is best
| practice to apply a patch to resolve this issue.


CVE-2026-14787[6]:
| A weakness has been identified in radareorg radare2 up to 6.1.6.
| Affected is the function cmd_print in the library
| libr/core/cmd_print.inc of the component pb Print Command Handler.
| This manipulation causes integer overflow. The attack needs to be
| launched locally. The exploit has been made available to the public
| and could be used for attacks. Patch name:
| 2b6265476c75567006b0fcbb749f4ae7b189c5df. It is recommended to apply
| a patch to fix this issue.


CVE-2026-14788[7]:
| A security vulnerability has been detected in radareorg radare2 up
| to 6.1.6. Affected by this vulnerability is the function
| r_core_bin_load of the file libr/core/cfile.c. Such manipulation
| leads to use after free. The attack needs to be performed locally.
| The exploit has been disclosed publicly and may be used. The name of
| the patch is 635ab1eeb30340c26076722a90cb91fb2272130b. Applying a
| patch is advised to resolve this issue.


CVE-2026-14789[8]:
| A vulnerability was detected in radareorg radare2 up to 6.1.6.
| Affected by this issue is some unknown functionality of the file
| libr/bin/format/mdmp/mdmp.c of the component Memory64ListStream
| Parser. Performing a manipulation results in stack-based buffer
| overflow. The attack requires a local approach. The exploit is now
| public and may be used. The patch is named
| 175d4addb68981331c85b10681c2161c38fb5762. It is suggested to install
| a patch to address this issue.


If you fix the vulnerabilities please also make sure to include the
CVE (Common Vulnerabilities & Exposures) ids in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2026-14757
    https://www.cve.org/CVERecord?id=CVE-2026-14757
[1] https://security-tracker.debian.org/tracker/CVE-2026-14758
    https://www.cve.org/CVERecord?id=CVE-2026-14758
[2] https://security-tracker.debian.org/tracker/CVE-2026-14759
    https://www.cve.org/CVERecord?id=CVE-2026-14759
[3] https://security-tracker.debian.org/tracker/CVE-2026-14760
    https://www.cve.org/CVERecord?id=CVE-2026-14760
[4] https://security-tracker.debian.org/tracker/CVE-2026-14761
    https://www.cve.org/CVERecord?id=CVE-2026-14761
[5] https://security-tracker.debian.org/tracker/CVE-2026-14786
    https://www.cve.org/CVERecord?id=CVE-2026-14786
[6] https://security-tracker.debian.org/tracker/CVE-2026-14787
    https://www.cve.org/CVERecord?id=CVE-2026-14787
[7] https://security-tracker.debian.org/tracker/CVE-2026-14788
    https://www.cve.org/CVERecord?id=CVE-2026-14788
[8] https://security-tracker.debian.org/tracker/CVE-2026-14789
    https://www.cve.org/CVERecord?id=CVE-2026-14789

Regards,
Salvatore

--- End Message ---
--- Begin Message ---
Source: radare2
Source-Version: 6.1.8+ds-1
Done: Alex Myczko <[email protected]>

We believe that the bug you reported is fixed in the latest version of
radare2, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Alex Myczko <[email protected]> (supplier of updated radare2 package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sun, 12 Jul 2026 20:44:11 +0200
Source: radare2
Architecture: source
Version: 6.1.8+ds-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Security Tools <[email protected]>
Changed-By: Alex Myczko <[email protected]>
Closes: 1141644
Changes:
 radare2 (6.1.8+ds-1) unstable; urgency=medium
 .
   * New upstream version. (Closes: #1141644)
     (CVE-2026-14757 CVE-2026-14758 CVE-2026-14759
      CVE-2026-14760 CVE-2026-14761 CVE-2026-14786
      CVE-2026-14787 CVE-2026-14788 CVE-2026-14789)
   * d/README.source: added.
Checksums-Sha1:
 2fff7ebff284bc0b05a6a794a72db5dd68e66479 2397 radare2_6.1.8+ds-1.dsc
 6d52931468190c86219e01b4dc55b1208bbcfdf2 11541556 radare2_6.1.8+ds.orig.tar.xz
 a4de2bea5f01d805328809c095f49984f95a0d91 19604 radare2_6.1.8+ds-1.debian.tar.xz
 ea928eff40084da7546d318f377a2f9770ba8361 7779 
radare2_6.1.8+ds-1_source.buildinfo
Checksums-Sha256:
 33a0ee8060b8ae15685a365eccef5fead18858457eb7ff3e7eed27405b0a5359 2397 
radare2_6.1.8+ds-1.dsc
 cbce50709f6bbca0636166e91ef9672a28570b15ba494473ac68caf8b1cad428 11541556 
radare2_6.1.8+ds.orig.tar.xz
 741e2e5a1ddae411baac6f4238a6385626f0553fbb84d19bf58c32148baab2c4 19604 
radare2_6.1.8+ds-1.debian.tar.xz
 e0b8118f01ba218b6cef542d2559482b4189c2d2687deb94703f76592e719993 7779 
radare2_6.1.8+ds-1_source.buildinfo
Files:
 448e5e9c63cc6b9427efc7242d971aef 2397 devel optional radare2_6.1.8+ds-1.dsc
 4f4c053c6b465f0e478519cb7eca6d2a 11541556 devel optional 
radare2_6.1.8+ds.orig.tar.xz
 8950bca778e50e2f0816cb4daed4668a 19604 devel optional 
radare2_6.1.8+ds-1.debian.tar.xz
 d3c40297e25112395d21bd97060f8b09 7779 devel optional 
radare2_6.1.8+ds-1_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=Ygs4
-----END PGP SIGNATURE-----

Attachment: pgpPaHWoLq2_c.pgp
Description: PGP signature


--- End Message ---

Reply via email to