Описание
re2c 1.3 has a heap-based buffer overflow in Scanner::fill in parse/scanner.cc via a long lexeme.
re2c 1.3 has a heap-based buffer overflow in Scanner::fill in parse/scanner.cc via a long lexeme.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2020-11958
- https://github.com/skvadrik/re2c/commit/c4603ba5ce229db83a2a4fb93e6d4b4e3ec3776a
- https://blogs.gentoo.org/ago/2020/04/19/re2c-heap-overflow-in-scannerfill-scanner-cc
- https://security.gentoo.org/glsa/202007-28
- https://usn.ubuntu.com/4338-1
- https://usn.ubuntu.com/4338-2
- https://www.openwall.com/lists/oss-security/2020/04/19/1
- http://www.openwall.com/lists/oss-security/2020/04/21/1
Связанные уязвимости
CVSS3: 7.8
ubuntu
почти 6 лет назад
re2c 1.3 has a heap-based buffer overflow in Scanner::fill in parse/scanner.cc via a long lexeme.
CVSS3: 2.8
redhat
почти 6 лет назад
re2c 1.3 has a heap-based buffer overflow in Scanner::fill in parse/scanner.cc via a long lexeme.
CVSS3: 7.8
nvd
почти 6 лет назад
re2c 1.3 has a heap-based buffer overflow in Scanner::fill in parse/scanner.cc via a long lexeme.
CVSS3: 7.8
debian
почти 6 лет назад
re2c 1.3 has a heap-based buffer overflow in Scanner::fill in parse/sc ...