14 matches found
CVE-2026-10692
A weakness has been identified in johnhuang316 code-index-mcp up to 2.14.0. Affected is the function issaferegexpattern of the component searchcodeadvanced. Executing a manipulation of the argument regex can lead to inefficient regular expression complexity. It is possible to launch the attack...
EUVD-2026-34057
A weakness has been identified in johnhuang316 code-index-mcp up to 2.14.0. Affected is the function issaferegexpattern of the component searchcodeadvanced. Executing a manipulation of the argument regex can lead to inefficient regular expression complexity. It is possible to launch the attack...
CVE-2026-10692
A weakness has been identified in johnhuang316 code-index-mcp up to 2.14.0. Affected is the function issaferegexpattern of the component searchcodeadvanced. Executing a manipulation of the argument regex can lead to inefficient regular expression complexity. It is possible to launch the attack...
Code Index MCP 安全漏洞
Code Index MCP is a smart code indexing and analysis large model context server developed by johnhuang316 as an individual developer. Versions of Code Index MCP prior to 2.14.0 contain security vulnerabilities. These vulnerabilities stem from the operation of the issaferegexpattern function in th...
CVE-2026-10692
A weakness has been identified in johnhuang316 code-index-mcp up to 2.14.0. Affected is the function issaferegexpattern of the component searchcodeadvanced. Executing a manipulation of the argument regex can lead to inefficient regular expression complexity. It is possible to launch the attack...
CVE-2026-10692 johnhuang316 code-index-mcp search_code_advanced is_safe_regex_pattern redos
A weakness has been identified in johnhuang316 code-index-mcp up to 2.14.0. Affected is the function issaferegexpattern of the component searchcodeadvanced. Executing a manipulation of the argument regex can lead to inefficient regular expression complexity. It is possible to launch the attack...
CVE-2026-10692 johnhuang316 code-index-mcp search_code_advanced is_safe_regex_pattern redos
A weakness has been identified in johnhuang316 code-index-mcp up to 2.14.0. Affected is the function issaferegexpattern of the component searchcodeadvanced. Executing a manipulation of the argument regex can lead to inefficient regular expression complexity. It is possible to launch the attack...
CVE-2026-10692
The CVE-2026-10692 affects johnhuang316 code-index-mcp up to version 2.14.0, specifically the is_safe_regex_pattern function in the search_code_advanced component. Manipulating the regex argument can cause inefficient regex processing (potentially a denial-of-service), with remote attack potentia...
CVE-2026-10692 johnhuang316 code-index-mcp search_code_advanced is_safe_regex_pattern redos
A weakness has been identified in johnhuang316 code-index-mcp up to 2.14.0. Affected is the function issaferegexpattern of the component searchcodeadvanced. Executing a manipulation of the argument regex can lead to inefficient regular expression complexity. It is possible to launch the attack...
PT-2026-45886
Name of the Vulnerable Software and Affected Versions johnhuang316 code-index-mcp versions prior to 2.14.1 Description A weakness exists in the is safe regex pattern function within the search code advanced component. A remote attacker can manipulate the regex argument to cause inefficient regula...
Astra Linux – Vulnerability in giflib
The DGifDecompressLine function in dgiflib.c within GIFLIB possibly version 3.0.x, as later included in cgif.c in sam2p 0.49.4, has a heap-based buffer overflow because the index of the "Private-RunningCode - 2" array is not checked. This could lead to a denial of service or possibly other...
GTKWave Code Issue Vulnerability
GTKWave is a full-featured, GTK+-based waveform viewer from GTKWave. A code issue vulnerability exists in GTKWave version 3.3.115 that stems from incorrect array index validation. An attacker could exploit this vulnerability to cause arbitrary code execution via a specially crafted .evcd file...
SUSE CVE-2018-11490
The DGifDecompressLine function in dgiflib.c in GIFLIB possibly version 3.0.x, as later shipped in cgif.c in sam2p 0.49.4, has a heap-based buffer overflow because a certain "Private-RunningCode - 2" array index is not checked. This will lead to a denial of service or possibly unspecified other...
UBUNTU-CVE-2018-11490
The DGifDecompressLine function in dgiflib.c in GIFLIB possibly version 3.0.x, as later shipped in cgif.c in sam2p 0.49.4, has a heap-based buffer overflow because a certain "Private-RunningCode - 2" array index is not checked. This will lead to a denial of service or possibly unspecified other...