In radare2 prior to 3.1.1, the parseOperand function inside libr/asm/p/asm_x86_nz.c may allow attackers to cause a denial of service by crafting an input file, a related issue to CVE-2018-20456.