2 matches found
Integer Underflow (Wrap or Wraparound)
Overview Affected versions of this package are vulnerable to Integer Underflow Wrap or Wraparound due to improper handling of buffer size calculations in the libregexp engine. An attacker can achieve out-of-bounds memory writes by supplying a specially crafted regular expression that causes an...
UBUNTU-CVE-2025-62495
An integer overflow vulnerability exists in the QuickJS regular expression engine libregexp due to an inconsistent representation of the bytecode buffer size. The regular expression bytecode is stored in a DynBuf structure, which correctly uses a $\textsize\textt$ an unsigned type, typically...