Primary

Context

Rizin Double Free Vulnerability in Byte Pattern Search Function

Vulnerability

Patched

A double free vulnerability has been identified in the Rizin reverse engineering framework, specifically within the byte_pattern_search function of the command search module. This issue arises from incorrect pointer ownership declarations, leading to improper memory management.

Impact

Exploitation of this vulnerability causes a heap-based use-after-free condition, which can potentially be leveraged for arbitrary code execution.

Reproduction

The vulnerability can be reproduced by calling the byte_pattern_search function with invalid boundary values. This can be done by setting the 'search.in' configuration option to a mode that does not correspond with the 'search.from' and 'search.to' values, such as 'section'.

Remediation

Users should update to version 045fff3, where this vulnerability has been patched. Additionally, avoid using invalid boundary values in search operations.

Added: May 29, 2026, 8:32 PM

Updated: May 29, 2026, 8:32 PM

Vulnerability Rating

Custom Algorithm

spread

2.4

impact

0.6

exploitability

4.3

remediation

7.9

relevance

9.6

threat

4.8

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.4

impact

0.6

exploitability

4.3

remediation

7.9

relevance

9.6

threat

4.8

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Rizin Double Free Vulnerability in Byte Pattern Search Function

Vulnerability

Impact

Reproduction

Remediation

Affected Products

Rizin

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating