{"id":"CVE-2023-30226","details":"An issue was discovered in function get_gnu_verneed in rizinorg Rizin prior to 0.5.0 verneed_entry allows attackers to cause a denial of service via crafted elf file.","modified":"2026-04-12T03:51:11.262316Z","published":"2023-07-12T02:15:09.090Z","references":[{"type":"ADVISORY","url":"https://github.com/ifyGecko/CVE-2023-30226"},{"type":"FIX","url":"https://github.com/rizinorg/rizin/commit/a6d89de0d44e776f9bccc3a168fdc79f604e14ed"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/rizinorg/rizin","events":[{"introduced":"0"},{"fixed":"a7d643ad4bd969f8bc51e90e97c9926330fd53ff"},{"fixed":"a6d89de0d44e776f9bccc3a168fdc79f604e14ed"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"0.5.0"}]}}],"versions":["0.1.0","v0.1.0","v0.1.1","v0.1.2","v0.2.0","v0.2.1","v0.3.0","v0.3.1","v0.3.2","v0.3.3","v0.3.4","v0.4.0","v0.4.1"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-30226.json","vanir_signatures":[{"signature_type":"Line","target":{"file":"librz/core/cgraph.c"},"signature_version":"v1","source":"https://github.com/rizinorg/rizin/commit/a7d643ad4bd969f8bc51e90e97c9926330fd53ff","deprecated":false,"id":"CVE-2023-30226-2de9db6d","digest":{"threshold":0.9,"line_hashes":["337990670324720922285001951913253597746","210200574461307068983497237225366135087","66224629182969984815808210705619204616"]}},{"signature_type":"Function","target":{"function":"get_gnu_verneed","file":"librz/bin/format/elf/elf_info.c"},"signature_version":"v1","source":"https://github.com/rizinorg/rizin/commit/a6d89de0d44e776f9bccc3a168fdc79f604e14ed","deprecated":false,"id":"CVE-2023-30226-50868010","digest":{"length":1136,"function_hash":"256675400898977702149261066073240217891"}},{"signature_type":"Line","target":{"file":"librz/core/cmd_descs/cmd_descs.c"},"signature_version":"v1","source":"https://github.com/rizinorg/rizin/commit/a7d643ad4bd969f8bc51e90e97c9926330fd53ff","deprecated":false,"id":"CVE-2023-30226-8f61df0b","digest":{"threshold":0.9,"line_hashes":["137526596517811124542787231205167844277","5322193585349225605185318162336607442","44772916222502690921913699456070418455","112039181624458605858727871678987010907","115873016111006029679944791802320761635","213867971880388250821394720281897122862","149036816537065224854583438966876500995","323318824582194778606276242255595831797","168140641548873358442919159403120852752","329609098887743187426530506369781939274","278736073270746704319136386601890198856"]}},{"signature_type":"Line","target":{"file":"librz/bin/format/elf/elf_info.c"},"signature_version":"v1","source":"https://github.com/rizinorg/rizin/commit/a6d89de0d44e776f9bccc3a168fdc79f604e14ed","deprecated":false,"id":"CVE-2023-30226-f2088309","digest":{"threshold":0.9,"line_hashes":["37777785955955291965699394521740695514","136802829918451262231589168556502742719","236549707531969171535208301277022685146"]}}],"vanir_signatures_modified":"2026-04-12T03:51:11Z"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}]}