Уязвимость CVE-2019-19204

Пакет	Статус	Версия исправления	Релиз	Тип
libonig	fixed	6.9.4-1		package
libonig	no-dsa		buster	package

CVE-2019-19204

CVSS3: 7.5

ubuntu

больше 5 лет назад

An issue was discovered in Oniguruma 6.x before 6.9.4_rc2. In the function fetch_interval_quantifier (formerly known as fetch_range_quantifier) in regparse.c, PFETCH is called without checking PEND. This leads to a heap-based buffer over-read.

CVE-2019-19204

CVSS3: 7.5

redhat

больше 5 лет назад

An issue was discovered in Oniguruma 6.x before 6.9.4_rc2. In the function fetch_interval_quantifier (formerly known as fetch_range_quantifier) in regparse.c, PFETCH is called without checking PEND. This leads to a heap-based buffer over-read.

CVE-2019-19204

CVSS3: 7.5

nvd

больше 5 лет назад

An issue was discovered in Oniguruma 6.x before 6.9.4_rc2. In the function fetch_interval_quantifier (formerly known as fetch_range_quantifier) in regparse.c, PFETCH is called without checking PEND. This leads to a heap-based buffer over-read.

GHSA-563p-6h7j-cxg6

github

около 3 лет назад

An issue was discovered in Oniguruma 6.x before 6.9.4_rc2. In the function fetch_interval_quantifier (formerly known as fetch_range_quantifier) in regparse.c, PFETCH is called without checking PEND. This leads to a heap-based buffer over-read.

BDU:2021-03594

CVSS3: 7.5

fstec

больше 5 лет назад

Уязвимость функции fetch_interval_quantifier библиотеки для регулярных выражений Oniguruma, связанная с чтением за допустимыми границами буфера данных, позволяющая нарушителю вызвать отказ в обслуживании

exploitDog

CVE-2019-19204

Описание

Пакеты

Примечания

Связанные уязвимости