28 matches found
CVE-2019-16161
Onigmo through 6.2.0 has a NULL pointer dereference in onigerrorcodetostr because of fetchtoken in regparse.c...
Null pointer dereference
Onigmo through 6.2.0 has a NULL pointer dereference in onigerrorcodetostr because of fetchtoken in regparse.c...
CVE-2019-16161
Onigmo through 6.2.0 has a NULL pointer dereference in onigerrorcodetostr because of fetchtoken in regparse.c...
CVE-2019-16161
CVE-2019-16161 affects Onigmo up to version 6.2.0. The vulnerability is a NULL pointer dereference in onig_error_code_to_str caused by fetch_token in regparse.c. This is reported across multiple sources (NVD entry and Nessus/OpenVAS references) with associated exploitation context not detailed in...
CVE-2019-16163
Oniguruma before 6.9.3 allows Stack Exhaustion in regcomp.c because of recursion in regparse.c...
Ruby Denial of Service Vulnerability
Ruby is a cross-platform, object-oriented, dynamically typed programming language developed by Japanese software developer Yukihiro Matsumoto. A security vulnerability exists in the parsecharclass function of the regparse.c file of the Onigmo also known as Oniguruma-mod regular expression library...
CVE-2017-6181
The parsecharclass function in regparse.c in the Onigmo aka Oniguruma-mod regular expression library, as used in Ruby 2.4.0, allows remote attackers to cause a denial of service deep recursion and application crash via a crafted regular expression...
CVE-2017-6181
The parsecharclass function in regparse.c in the Onigmo aka Oniguruma-mod regular expression library, as used in Ruby 2.4.0, allows remote attackers to cause a denial of service deep recursion and application crash via a crafted regular expression...