11 matches found
Astra Linux - уязвимость в libonig
A issue was discovered in Oniguruma 6.x before 6.9.4rc2. In the function fetchintervalquantifier formerly known as fetchrangequantifier in regparse.c, PFETCH is called without checking PEND. This leads to a buffer overflow issue based on the heap mechanism...
EUVD-2019-8836
Malware in sbrugna...
oniguruma: Heap-based buffer over-read in function fetch_interval_quantifier in regparse.c
An out-of-bounds read vulnerability was found in Oniguruma in the way it handled regular expression quantifiers. A remote attacker could abuse this flaw by providing a malformed regular expression that, when processed by an application linked to Oniguruma, could possibly crash the application,...
oniguruma: Heap-based buffer over-read in function fetch_interval_quantifier in regparse.c
An out-of-bounds read vulnerability was found in Oniguruma in the way it handled regular expression quantifiers. A remote attacker could abuse this flaw by providing a malformed regular expression that, when processed by an application linked to Oniguruma, could possibly crash the application,...
oniguruma: Heap-based buffer over-read in function fetch_interval_quantifier in regparse.c
An out-of-bounds read vulnerability was found in Oniguruma in the way it handled regular expression quantifiers. A remote attacker could abuse this flaw by providing a malformed regular expression that, when processed by an application linked to Oniguruma, could possibly crash the application,...
SUSE CVE-2019-19204
An issue was discovered in Oniguruma 6.x before 6.9.4rc2. In the function fetchintervalquantifier formerly known as fetchrangequantifier in regparse.c, PFETCH is called without checking PEND. This leads to a heap-based buffer over-read...
oniguruma: Heap-based buffer over-read in function fetch_interval_quantifier in regparse.c
An out-of-bounds read vulnerability was found in Oniguruma in the way it handled regular expression quantifiers. A remote attacker could abuse this flaw by providing a malformed regular expression that, when processed by an application linked to Oniguruma, could possibly crash the application,...
EulerOS 2.0 SP8 : oniguruma (EulerOS-SA-2020-1019)
According to the versions of the oniguruma package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Oniguruma before 6.9.3 allows Stack Exhaustion in regcomp.c because of recursion in regparse.c.CVE-2019-16163 - An issue was discovered in...
Oniguruma Buffer Overflow Vulnerability
Oniguruma is a BSD-licensed regular expression library that supports multiple character encodings. A buffer overflow vulnerability in the 'fetchintervalquantifier' function of the regparse.c file in versions 6.x prior to Oniguruma 6.9.4rc2, which originates when a networked system or product...
DEBIAN-CVE-2019-19204
An issue was discovered in Oniguruma 6.x before 6.9.4rc2. In the function fetchintervalquantifier formerly known as fetchrangequantifier in regparse.c, PFETCH is called without checking PEND. This leads to a heap-based buffer over-read...
UBUNTU-CVE-2019-19204
An issue was discovered in Oniguruma 6.x before 6.9.4rc2. In the function fetchintervalquantifier formerly known as fetchrangequantifier in regparse.c, PFETCH is called without checking PEND. This leads to a heap-based buffer over-read...