Comment 3 for bug 1882889

The version of radare2 in Ubuntu 16.04 LTS is not necessarily affected by all the listed CVEs - for more detailed status of which CVE affects which version please consult the Ubuntu CVE Tracker at http://people.canonical.com/~ubuntu-security/cve/

ie. for instance for CVE-2017-7274 which you can see the status at http://people.canonical.com/~ubuntu-security/cve/CVE-2017-7274 you can see this does not affect Ubuntu 16.04 LTS as the code is not present there.