Description
Rizin is a UNIX-like reverse engineering framework and command-line toolset. Prior to 0.8.2, a heap overflow can be exploited when a malicious mach0 file, having bogus entries for the dyld chained segments, is parsed by rizin. This vulnerability is fixed in 0.8.2.
Published: 2026-02-02
Score: 4.4 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Heap Overflow
Action: Immediate Patch
AI Analysis

Impact

A heap overflow in the mach0_chained_fixups.c component of Rizin occurs when parsing a mach0 file containing malformed chained segment entries. The flaw, classified as CWE-770, can corrupt memory and, if exploited, may lead to arbitrary code execution or other severe stability violations. The description specifically indicates that the vulnerability can be exploited when a malicious file is processed by the application.

Affected Systems

The problem exists in all releases of Rizin prior to version 0.8.2, affecting all platforms supported by the project. The vendor rizinorg has supplied a fix in the 0.8.2 release, so any installation using an earlier version is affected.

Risk and Exploitability

The CVSS score of 4.4 rates the issue as moderate, and the EPSS score of less than 1% suggests that real‑world exploitation is unlikely. The vulnerability requires that the attacker supply a crafted mach0 file to the program, meaning it can be exercised locally or via a supplied file on a shared system. The flaw is not listed in CISA's KEV catalog, further indicating low prevalence in the wild.

Generated by OpenCVE AI on April 18, 2026 at 14:16 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade to version 0.8.2 or later to receive the official fix
  • If upgrading immediately is not possible, run Rizin in a sandboxed environment and restrict the process to a read‑only file system to prevent the interpreter from executing potentially malicious code
  • Avoid opening any untrusted mach0 files and monitor for abnormal memory usage or crashes in the application

Generated by OpenCVE AI on April 18, 2026 at 14:16 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 20 Feb 2026 21:15:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:rizin:rizin:*:*:*:*:*:*:*:*

Wed, 04 Feb 2026 12:30:00 +0000

Type Values Removed Values Added
First Time appeared Rizin
Rizin rizin
Vendors & Products Rizin
Rizin rizin

Tue, 03 Feb 2026 16:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 02 Feb 2026 23:15:00 +0000

Type Values Removed Values Added
Description Rizin is a UNIX-like reverse engineering framework and command-line toolset. Prior to 0.8.2, a heap overflow can be exploited when a malicious mach0 file, having bogus entries for the dyld chained segments, is parsed by rizin. This vulnerability is fixed in 0.8.2.
Title Rizin has a heap overflow on mach0_chained_fixups.c
Weaknesses CWE-770
References
Metrics cvssV3_1

{'score': 4.4, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L'}

Subscriptions

Rizin Rizin
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-02-03T15:37:25.089Z

Reserved: 2026-01-09T18:27:19.388Z

Link: CVE-2026-22780

cve-icon Vulnrichment

Updated: 2026-02-03T15:37:21.823Z

cve-icon NVD

Status : Analyzed

Published: 2026-02-02T23:16:06.870

Modified: 2026-02-20T21:12:28.077

Link: CVE-2026-22780

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-18T14:30:02Z

Weaknesses