OESA-2023-1033 byacc security update

Berkeley Yacc is an LALR1 parser generator. Berkeley Yacc has been made as compatible as possible with AT&T Yacc. Berkeley Yacc can accept any input specification that conforms to the AT&T Yacc documentation. Specifications that take advantage of undocumented features of AT&T Yacc will probably b...

Berkeley Yacc (byacc) 'skeleton.c'本地拒绝服务漏洞

BUGTRAQ ID: 30233 CNCAN ID：CNCAN-2008071604 Berkeley Yacc是一款用于生成编译器的编译器。 Berkeley Yacc byacc 'skeleton.c'存在越界访问，本地攻击者可以利用漏洞对应用程序进行拒绝服务攻击。 在减少规则和yacc堆栈指针指向分配栈中很后面的位置时，通过$$ = $1行为可导致内存越界访问而造成应用程序崩溃。 Robert Corbett Berkeley Yacc byacc 20070509 OpenBSD OpenBSD 2.9 OpenBSD OpenBSD 2.8 OpenBSD OpenBSD...