CVE-2019-20433

2020-01-27T15:09:15
ID RH:CVE-2019-20433
Type redhatcve
Reporter redhat.com
Modified 2020-08-17T23:08:36

Description

libaspell.a in GNU Aspell before 0.60.8 has a buffer over-read for a string ending with a single '\0' byte, if the encoding is set to ucs-2 or ucs-4 outside of the application, as demonstrated by the ASPELL_CONF environment variable.