A vulnerability was detected in radareorg radare2 up to 6.1.6. Affected by this issue is some unknown functionality of the file libr/bin/format/mdmp/mdmp.c of the component Memory64ListStream Parser. Performing a manipulation results in stack-based buffer overflow. The attack requires a local approach. The exploit is now public and may be used. The patch is named 175d4addb68981331c85b10681c2161c38fb5762. It is suggested to install a patch to address this issue.
Metrics
Affected Vendors & Products
References
History
Mon, 06 Jul 2026 03:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A vulnerability was detected in radareorg radare2 up to 6.1.6. Affected by this issue is some unknown functionality of the file libr/bin/format/mdmp/mdmp.c of the component Memory64ListStream Parser. Performing a manipulation results in stack-based buffer overflow. The attack requires a local approach. The exploit is now public and may be used. The patch is named 175d4addb68981331c85b10681c2161c38fb5762. It is suggested to install a patch to address this issue. | |
| Title | radareorg radare2 Memory64ListStream mdmp.c stack-based overflow | |
| First Time appeared |
Radareorg
Radareorg radare2 |
|
| Weaknesses | CWE-119 CWE-121 |
|
| CPEs | cpe:2.3:a:radareorg:radare2:*:*:*:*:*:*:*:* | |
| Vendors & Products |
Radareorg
Radareorg radare2 |
|
| References |
|
|
| Metrics |
cvssV2_0
|
Status: PUBLISHED
Assigner: VulDB
Published:
Updated: 2026-07-06T02:00:10.294Z
Reserved: 2026-07-05T16:03:21.582Z
Link: CVE-2026-14789
No data.
No data.
No data.
OpenCVE Enrichment
Updated: 2026-07-06T05:30:10Z