Описание
ELSA-2024-0889: oniguruma security update (MODERATE)
[6.8.2-2.1]
- Fix CVE-2019-13224 Resolves: RHEL-6970
- Fix CVE-2019-16163 Resolves: RHEL-9506
- Fix CVE-2019-19012 Resolves: RHEL-9511
- Fix CVE-2019-19203 Resolves: RHEL-9510
- Fix CVE-2019-19204 Resolves: RHEL-9509
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
oniguruma
6.8.2-2.1.el8_9
oniguruma-devel
6.8.2-2.1.el8_9
Oracle Linux x86_64
oniguruma
6.8.2-2.1.el8_9
oniguruma-devel
6.8.2-2.1.el8_9
Ссылки на источники
Связанные уязвимости
ELSA-2020-3662: php:7.3 security, bug fix, and enhancement update (MODERATE)
An issue was discovered in Oniguruma 6.x before 6.9.4_rc2. In the function gb18030_mbc_enc_len in file gb18030.c, a UChar pointer is dereferenced without checking if it passed the end of the matched string. This leads to a heap-based buffer over-read.
An issue was discovered in Oniguruma 6.x before 6.9.4_rc2. In the function gb18030_mbc_enc_len in file gb18030.c, a UChar pointer is dereferenced without checking if it passed the end of the matched string. This leads to a heap-based buffer over-read.