See also: https://github.com/rizinorg/rizin/releases/tag/v0.7.4

Fix: https://github.com/rizinorg/rizin/commit/db6c5b39c065ce719f587c9815c47fbb834b10fa

Status comment: (none) => Fixed upstream in 0.7.4
CVE: (none) => CVE-2022-1207
Whiteboard: (none) => MGA9TOO
Source RPM: (none) => rizin-0.7.3-3.mga10.src.rpm, rizin-0.5.2-1.mga9.src.rpm

Varying people have packaged this.

Assignee: bugsquad => pkg-bugs
CC: (none) => fri

Suggested advisory:
========================

The updated packages fix a security vulnerability:

Command injection via RzBinInfo bclass due legacy code. (CVE-2022-1207)

References:
https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/YNDCM5TGWRLSMIJ74ZI6LMNSCCH5DBPL/
https://github.com/rizinorg/rizin/security/advisories/GHSA-5jhc-frm4-p8v9
========================

Updated packages in core/updates_testing:
========================
lib(64)rizin0-0.5.2-1.1.mga9
lib(64)rizin-devel-0.5.2-1.1.mga9
rizin-0.5.2-1.1.mga9
rizin-common-0.5.2-1.1.mga9

from SRPM:
rizin-0.5.2-1.1.mga9.src.rpm

Status comment: Fixed upstream in 0.7.4 => (none)
Version: Cauldron => 9
Status: NEW => ASSIGNED
Whiteboard: MGA9TOO => (none)
Source RPM: rizin-0.7.3-3.mga10.src.rpm, rizin-0.5.2-1.mga9.src.rpm => rizin-0.5.2-1.mga9.src.rpm
Assignee: pkg-bugs => qa-bugs

MGA9-64 Plasma Wayland on Compaq H000SB
No installation issues.
No previous update and reading its manual did not make me much wiser - too many options.
But I read this is a fork of radare2, and I see the commands are similarly named, so I gambled a bit:
$ rizin -v
rizin 0.5.2 @ linux-x86-64, package: 0.5.2-1.1.mga9 (Mageia)

$ rizin -h
Usage: rizin [-ACdfLMnNqStuvwzX] [-P patch] [-p prj] [-a arch] [-b bits] [-i file]
             [-s addr] [-B baddr] [-m maddr] [-c cmd] [-e k=v] file|pid|-|--|=
 --           run rizin without opening any file
 =            same as 'rizin malloc://512'
 -            read file from stdin 
 -=           perform R=! command to run all commands remotely
 -0           print \x00 after init and every command
 -2           close stderr file descriptor (silent warning messages)
 -a [arch]    set asm.arch
 -A           run 'aaa' command to analyze all referenced code
 -b [bits]    set asm.bits
 -B [baddr]   set base address for PIE binaries
 -c 'cmd..'   execute rizin command
 -C           file is host:port (alias for -cR+http://%s/cmd/)
 -d           debug the executable 'file' or running process 'pid'
 -D [backend] enable debug mode (e cfg.debug=true)
 -e k=v       evaluate config var
 -f           block size = file size
 -F [binplug] force to use that rbin plugin
 -h, -hh      show help message, -hh for long
 -H ([var])   display variable
 -i [file]    run script file
 -I [file]    run script file before the file is opened
 -k [OS/kern] set asm.os (linux, macos, w32, netbsd, ...)
 -l [lib]     load plugin file
 -L           list supported IO plugins
 -m [addr]    map file at given address (loadaddr)
 -M           do not demangle symbol names
 -n, -nn      do not load RzBin info (-nn only load bin structures)
 -N           do not load user settings and scripts
 -NN          do not load any script or plugin
 -q           quiet mode (no prompt) and quit after -i
 -qq          quit after running all -c and -i
 -Q           quiet mode (no prompt) and quit faster (quickLeak=true)
 -p [p.rzdb]  load project file
 -r [rz-run]  specify rz-run profile to load (same as -e dbg.profile=X)
 -R [rule]    specify custom rz-run directive
 -s [addr]    initial seek
 -T           do not compute file hashes
 -u           set bin.filter=false to get raw sym/sec/cls names
 -v, -V       show rizin version (-V show lib versions)
 -w           open file in write mode
 -x           open without exec-flag (asm.emu will not work), See io.exec
 -X           same as -e bin.usextr=false (useful for dyldcache)
 -z, -zz      do not load strings or load them even in raw

$ rz-ax 0011000011111111d
12543

$ rz-asm ret
c3

$ rz-bin -I firefox.exe 
[Info]
arch     x86
cpu      N/A
baddr    0x00400000
binsz    0x0007e3d0
bintype  pe
bits     32
retguard false
class    PE32
cmp.csum 0x0008c46c
compiled Thu Jun 21 16:53:30 2018 UTC+1
compiler N/A
dbg_file c:\builds\moz2_slave\m-esr52-w32-000000000000000000\build\src\obj-firefox\browser\app\firefox.pdb
endian   LE
hdr.csum 0x0008c46c
guid     CA62060F00F14226994F5C4935BE72192
intrp    N/A
laddr    0x00000000
lang     msvc
machine  i386
maxopsz  16
minopsz  1
os       windows
overlay  true
cc       cdecl
pcalign  0
rpath    N/A
signed   true
subsys   Windows GUI
stripped false
crypto   false
havecode true
va       true
sanitiz  false
static   false
linenum  false
lsyms    false
canary   false
PIE      true
RELROCS  false
NX       true

Looks OK for a fork.

Whiteboard: (none) => MGA9-64-OK
CC: (none) => herman.viaene

Validating.

Keywords: (none) => validated_update
CC: (none) => andrewsfarm, sysadmin-bugs

An update for this issue has been pushed to the Mageia Updates repository.

https://advisories.mageia.org/MGASA-2025-0005.html

Status: ASSIGNED => RESOLVED
Resolution: (none) => FIXED