9 matches found
MiracleLinux 8 : rust-toolset:rhel8 (AXSA:2022-2990:01)
The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-2990:01 advisory. Developer environment: Unicode's bidirectional BiDi override characters can cause trojan source attacks CVE-2021-42574 The following changes were introduced ...
RUSTSEC-2025-0075 `unic-char-range` is unmaintained
All Unicode crates that are part of https://github.com/open-i18n/rust-unic are unmaintained. Recommended alternatives - Since version 1.45.0 Rust supports using char with ops::Range, RangeFrom, RangeFull, RangeInclusive, RangeTo to iterate over a range of codepoints...
SUSE CVE-2008-0674
Buffer overflow in PCRE before 7.6 allows remote attackers to execute arbitrary code via a regular expression containing a character class with a large number of characters with Unicode code points greater than 255...
MGASA-2021-0517 Updated rust packages fix security vulnerability
Updated rust packages fix security vulnerability This update mitigates a security concern in the Unicode standard, affecting source code containing "bidirectional override" Unicode codepoints: in some cases the use of those codepoints could lead to the reviewed code being different than the...
rust-toolset:ol8 security update
rust 1.54.0-3 - Lint against Unicode control codepoints. rust-toolset 1.54.0-1 - Update to Rust and Cargo 1.54.0. 1.53.0-1 - Update to Rust and Cargo 1.53.0...
harfbuzz/hb-subset-get-codepoints-fuzzer: Use-of-uninitialized-value in OT::OffsetTo<OT::ArrayOfM1<OT::ResourceTypeRecord, OT::IntType<unsigned short, 2
Project: https://github.com/harfbuzz/harfbuzz.git Detailed report: https://oss-fuzz.com/testcase?key=5736539338833920 Project: harfbuzz Fuzzer: libFuzzerharfbuzzhb-subset-get-codepoints-fuzzer Fuzz target binary: hb-subset-get-codepoints-fuzzer Job Type: libfuzzermsanharfbuzz Platform Id: linux...
PCRE library buffer overflow
Buffer overflows on regular expressins with codepoints greatr than 255...
PCRE: Buffer overflow
Background PCRE is a Perl-compatible regular expression library. GLib includes a copy of PCRE. Description PCRE contains a buffer overflow vulnerability when processing a character class containing a very large number of characters with codepoints greater than 255. Impact A remote attacker could...
Fedora 8 : pcre-7.3-3.fc8 (2008-1783)
This update addresses buffer overflow caused by a character class containing a very large number of characters with codepoints greater than 255 in UTF-8 mode - CVE-2008-0674, 431660 This issue may affect usages of pcre, when regular expressions from untrusted sources are compiled. Handling of...