CVE-2025-63744 | THREATINT

Description

A NULL pointer dereference vulnerability was discovered in radare2 6.0.5 and earlier within the load() function of bin_dyldcache.c. Processing a crafted file can cause a segmentation fault and crash the program.

PUBLISHED Reserved 2025-10-27 | Published 2025-11-14 | Updated 2025-11-16 | Assigner mitre

References

github.com/...isories/radare2-nullptr-deref-bin_dyldcache.md

github.com/radareorg/radare2/issues/24661

github.com/...ommit/e37e15d10fd8a19c3e57b3d7735a2cfe0082ec79

github.com/...025-002-radare2-nullptr-deref-bin_dyldcache.md

cve.org (CVE-2025-63744)

nvd.nist.gov (CVE-2025-63744)

Download JSON