logo
DATABASE RESOURCES PRICING ABOUT US

Oracle Linux 8 : oniguruma (ELSA-2020-4827)

Description

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-4827 advisory. - A NULL Pointer Dereference in match_at() in regexec.c in Oniguruma 6.9.2 allows attackers to potentially cause denial of service by providing a crafted regular expression. Oniguruma issues often affect Ruby, as well as common optional libraries for PHP and Rust. (CVE-2019-13225) Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.


Related