VDB
ALAS2-2020-1380
ALAS2-2020-1380
PUBLISHED
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Amazon | oniguruma |
Exploit Intelligence
- Heap-buffer-overflow in Oniguruma (function fetch_interval_quantifier) (github-poc)
- Heap-buffer-overflow in Oniguruma (function fetch_interval_quantifier) (github-poc)
- An integer overflow in the search_in_range function in regexec.c in Oniguruma 6.x before 6.9.4_rc2 leads to an out-of-bounds read (github-poc)
- Integer overflow in Oniguruma (github-poc)
Timeline
- Jan 6, 2020 CVE Published
References
- ALAS2-2020-1380: oniguruma (medium) advisory