Detections
Analytics

openSUSE 16 Security Update : radare2 (openSUSE-SU-2026:20653-1)

critical Nessus Plugin ID 311764

Synopsis

The remote openSUSE host is missing one or more security updates.

Description

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20653-1 advisory.

 Changes in radare2:

 - Update to version 6.1.4 (bsc#1262142, CVE-2026-40499):
 * Analysis: improve autoname scoring, jmptbl detection, and performance
 * Add callargs modifier, rnum expressions, and typed function context
 * Refactor autoname into plugin; extend RAnalPlugin hooks
 * Fix leaks, overflows, and command injection in analysis scripts
 * Improve string detection, wide strings, and switch/case analysis
 * Arch: fix v850/nds32 ESIL, optimize to O(1), improve pseudo support
 * Cache capstone options and improve multi-arch disassembly
 * ASM: add camel syntax support, unify via RArch API
 * Bin: major parser fixes (ELF, Mach-O, PE, DEX, PDB, WAD, XCOFF)
 * Fix leaks, OOB reads/writes, overflows, and improve bounds checks
 * Improve Swift demangling, ARM hints, relocations, and imports
 * Add nds32 reloc support and optimize kernelcache parsing
 * Build: install to lib64, fix illumos and packaging issues
 * CI: add GitHub Actions and FilC builds
 * Console: fix multiple overflows, OOB issues, and improve performance
 * Core: API renames, plugin load order, sandbox/config fixes
 * Crash: extensive fixes (UAF, OOB, overflows, injections, fuzz bugs)
 * Harden ELF, PDB, kernelcache, regex, disassemblers, and webserver
 * Debug: improve ptrace, winkd support, breakpoints, checkpoints
 * Disasm: cache flag lookups for performance
 * FS/IO: fix leaks, bounds, sparse IO, and device handling
 * HTTP/socket: webserver fixes and SSL fallback handling
 * Print/projects: improve formatting, endian handling, project metadata
 * Pseudo: add while/switch support and cleaner control flow
 * Search/shell: improve commands, parsing, and usability
 * Security: fix widespread command injection and sandbox escapes
 * Tests/tools: improve r2r, CLI tools, fuzzing, and plugin support
 * Types/util: parsing improvements, JSON/base64 updates, optimizations
 * Visual: fix UAF/leaks, improve panels and UX
 * Full changelog is available at:
 https://github.com/radareorg/radare2/releases/tag/6.1.4

 - Update to version 6.1.2:
 * Analysis: preserve timeouts, improve bb/jmptbl validation and limits
 * Optimize string detection and hot-path functions
 * Add APIs for function signatures, vars limits, and instruction hints
 * Fix overlapped functions, invalid code checks, and large bb handling
 * API: remove deprecated librmagic/filetype APIs and name filter
 * Arch: fix Thumb/endianness issues, add Python pseudo plugin
 * ASM: unify settings via RArch, fix directives, add bf pseudo plugin
 * Bin: improve ELF/Mach-O stripped detection and parsing safety
 * Harden Mach-O bounds, optimize kernelcache and XNU parsing
 * Fix many leaks (DEX, demangler, parsers) and infinite loops
 * Improve DWARF handling and symbol/type extraction
 * Build: improve meson, toolchains, and add ISO/docker support
 * Console: preserve timeout, fix themes and UTF-8 handling
 * Core: fix config bugs, improve startup and addressing support
 * Crash: fix UAF, OOB, race conditions, regex bugs, and overflows
 * Add safety checks across dotnet, Mach-O, DWARF, and webserver
 * Debug/ESIL: safer execution and divide-by-zero handling
 * FS/IO: fix HFS+, dyldcache speedups, safer zip handling
 * Graph: add bb size limit option
 * Print: merge commands, improve UTF-8 and formatting
 * Projects/tools: new configs, plugin support, CLI improvements
 * Search: faster analysis search and block buffering
 * Shell: improve grep/macros and file operations
 * Types: lazy-load, cache, and improve parsing (varargs, structs)
 * Tests: expand fuzzing and test suites
 * General cleanup, performance tuning, and safety improvements
 * Full changelog is available at:
 https://github.com/radareorg/radare2/releases/tag/6.1.4

 - Update to version 6.1.0:
 * Reimplement RBufRef using RRef; fix RLibDelHandler API
 * Remove stale JAY code; improve analysis performance and CI speed
 * Optimize type propagation, jump tables, and plugin integration
 * Fix infinite loops, antidisasm tricks, and function autonaming
 * Add new analysis options and trace import plugin (DRCOV)
 * Improve RCore seek operations and naming APIs
 * API: add RNum.getErr, enforce safe alloc macros, new helpers
 * Arch: update ARC disasm, refactor sessions, remove unsafe string ops
 * ASM: improve x86 validation, add CIL and ARC pseudo plugins
 * Bin: major fixes for PE, ELF, Java, MDMP, LE, DEX; reduce memory use
 * Add/import DWARF types, improve relocations and symbol handling
 * Extensive memory leak fixes and parser hardening across formats
 * Improve string handling, caching, and zero-copy optimizations
 * Build: improve meson, remove zip deps, add 3rd-party plugin support
 * Console: fix UTF-8 graphs and color propagation
 * Core: improve plugin handling and background task stability
 * Crash: fix multiple UAF, OOB, overflows, and injection issues
 * Sanitize inputs (function names, demangler, callconv)
 * Debug: add source breakpoints, ARM64/XNU support, FPU regs
 * Disasm: improve string handling, comments, and color logic
 * ESIL: extend x86 FPU emulation
 * FS/IO: fixes and plugin reorganizations
 * HTTP: fix sandbox webserver issues
 * Hash/tools: minor fixes and output improvements
 * General cleanup, safety checks, and performance optimizations
 * Full changelog is available at:
 https://github.com/radareorg/radare2/releases/tag/6.1.0

 - Update to version 6.0.8:
 * Migrate r_vector to RVec across core components
 * Refactor and optimize type propagation (now plugin-based)
 * Remove redundant anal.a2f and related duplication
 * Improve caching, memoization, and performance in analysis
 * Fix file corruption, null asserts, and command issues
 * Enhance x86 (AT&T syntax, enter instruction) and z80 support
 * Add initial .NET (CIL) disasm/asm support
 * Improve Java, ELF, Mach-O, APK, and PDB handling
 * Fix demangling, symbols, and relocation issues
 * Resolve multiple memory leaks and parser bugs
 * Fix UAF, OOB, overflows, and command injection vulnerabilities
 * Improve GDB debugging and breakpoint handling
 * Enhance disassembly visuals and color options
 * Update ESIL operators and behavior
 * Add support for APFS, GPT, BSD, APM partitions
 * Improve IO handling and add new plugins
 * Optimize performance (strbuf, memory usage)
 * Improve console UI, themes, and terminal handling
 * Refine SDK builds and CI pipelines
 * Improve CLI tools (rabin2, rasm2, rafs2)
 * Add JSON support and better help/version info
 * Expand type parsing (typedef, enum, union)
 * Improve socket/HTTP handling and downloads
 * Add and refine tests and reporting
 * General cleanup, safety checks, and code modernization
 * Full changelog is available at:
 https://github.com/radareorg/radare2/releases/tag/6.0.8

 - Update to version 6.0.7:
 * shell: Fix parsing r2 -H$(VARNAME) without a space

 - Update to version 6.0.6:
 * Full changelog is available at:
 https://github.com/radareorg/radare2/releases/tag/6.0.6

 - Update to version 6.0.4:
 * Full changelog is available at:
 https://github.com/radareorg/radare2/releases/tag/6.0.4

 - Update to version 6.0.2:
 * Full changelog is available at:
 https://github.com/radareorg/radare2/releases/tag/6.0.2

 - Update to version 6.0.0:
 * ABI changes:
 ~ RCorePlugins now have a session ~ Finish the RKons refactoring, all r_cons calls take instance instead of global ~ Rename RCrypto to RMuta ~ Use RCons instance from RLine ~ Rename RIOPlugin.widget to RIOPlugin.data ~ Refactor the RRegAlias api ~ Camelcase all the RCoreBind methods
 * Breaking API changes:
 ~ Boolify r_cons_rgb_parse ~ Add RLogLevel.fromString() and use it from -e log.level=? ~ Deprecate r_bin_addr2line ~ Rename RBinDbgItem into RBinAddrline ~ RNumCalc is now known as RNumMath ~ Move RFlagItem.alias into the Meta ~ Rename core->offset into core->addr (asm.offset and more!) ~ Rename RFlagItem.offset -> addr
 * API changes:
 ~ Boolify r_cons_rgb_parse ~ Add RLogLevel.fromString() and use it from -e log.level=? ~ Deprecate r_bin_addr2line ~ Rename RBinDbgItem into RBinAddrline ~ RNumCalc is now known as RNumMath ~ Move RFlagItem.alias into the Meta ~ Rename core->offset into core->addr (asm.offset and more!) ~ Rename RFlagItem.offset -> addr ~ Deprecate RLang.list() ~ Unified function to jsonify the plugin meta + more fields ~ Redesign the REvent API
 * Full changelog is available at:
 https://github.com/radareorg/radare2/releases/tag/6.0.0

 - CVE-2025-5641: Fix memory corruption by manipulation of the argument -T (bsc#1244121)
 - CVE-2025-1864: Fix buffer overflow and potential code execution (bsc#bsc#1238451)
 - CVE-2025-1744: Fix heap-based buffer over-read or buffer overflow (bsc#1238075)
 - CVE-2025-1378: Fix memory corruption (bsc#1237250)

 - Update to version 5.9.8:
 * Resolved CVE:
 - CVE-2024-29645: buffer overflow vulnerability allows an attacker to execute arbitrary code via the parse_die function (boo#1234065).
 For details, check full release notes:
 https://github.com/radareorg/radare2/releases/tag/5.9.8 https://github.com/radareorg/radare2/releases/tag/5.9.6 https://github.com/radareorg/radare2/releases/tag/5.9.4 https://github.com/radareorg/radare2/releases/tag/5.9.2 https://github.com/radareorg/radare2/releases/tag/5.9.0

Tenable has extracted the preceding description block directly from the SUSE security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Solution

Update the affected libsdb2_4_2, radare2, radare2-devel and / or radare2-zsh-completion packages.

See Also

https://bugzilla.suse.com/1234065

https://www.suse.com/security/cve/CVE-2024-29645

https://bugzilla.suse.com/1237250

https://www.suse.com/security/cve/CVE-2025-1378

https://bugzilla.suse.com/1238075

https://bugzilla.suse.com/1238451

https://www.suse.com/security/cve/CVE-2025-1744

https://www.suse.com/security/cve/CVE-2025-1864

https://bugzilla.suse.com/1244121

https://bugzilla.suse.com/1262142

https://www.suse.com/security/cve/CVE-2025-5641

https://www.suse.com/security/cve/CVE-2026-40499

Plugin Details

Severity: Critical

ID: 311764

File Name: openSUSE-2026-20653-1.nasl

Version: 1.1

Type: Local

Agent: unix

Published: 5/2/2026

Updated: 5/2/2026

Supported Sensors: Continuous Assessment, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: Low

Base Score: 1.7

Temporal Score: 1.3

Vector: CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:P

CVSS Score Source: CVE-2025-1378

CVSS v3

Risk Factor: Critical

Base Score: 9.8

Temporal Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C

CVSS Score Source: CVE-2025-1864

CVSS v4

Risk Factor: Critical

Base Score: 10

Threat Score: 9.3

Threat Vector: CVSS:4.0/E:P

Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

CVSS Score Source: CVE-2025-1864

Vulnerability Information

CPE: p-cpe:/a:novell:opensuse:radare2-zsh-completion, p-cpe:/a:novell:opensuse:libsdb2_4_2, p-cpe:/a:novell:opensuse:radare2-devel, cpe:/o:novell:opensuse:16.0, p-cpe:/a:novell:opensuse:radare2

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 4/29/2026

Vulnerability Publication Date: 12/2/2024

Reference Information

CVE: CVE-2024-29645, CVE-2025-1378, CVE-2025-1744, CVE-2025-1864, CVE-2025-5641, CVE-2026-40499