3 matches found
oniguruma: integer overflow in search_in_range function in regexec.c leads to out-of-bounds read
An integer overflow vulnerability leading to an out-of-bounds read was found in the way Oniguruma handled regular expression quantifiers. A remote attacker could abuse this flaw by providing a malformed regular expression that, when processed by an application linked to Oniguruma, could crash the...
PT-2022-36749 · Git +1 · Oniguruma
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: A heap-buffer-overflow READ 1 crash has been reported. The crash involves the functions gbNUMBER mbc enc len, match at, and search in range. No informati...
The vulnerability of the search_in_range function in the Oniguruma library, related to reading beyond the permissible buffer limits, allows attackers to access confidential data, compromise its integrity, and cause service failures.
The vulnerability of the searchinrange function in the Oniguruma library relates to integer overflow of values. Exploiting this vulnerability could allow an attacker to gain access to confidential data, compromise its integrity, and even cause service failures...