The avr_op_analyze function in radare2 2.5.0 allows remote attackers to cause a denial of service via a crafted binary file.