VDB
GHSA-ggp4-f63c-mcc4
GHSA-ggp4-f63c-mcc4
PUBLISHED
Exploit Intelligence
- An issue was discovered in Oniguruma 6.x before 6.9.4_rc2. In the function gb18030_mbc_enc_len in file gb18030.c, a UChar pointer is dereferenced without checking if it passed the end of the matched string. This leads to a heap-based buffer over-read (github-poc)
- An issue was discovered in Oniguruma 6.x before 6.9.4_rc2. In the function gb18030_mbc_enc_len in file gb18030.c, a UChar pointer is dereferenced without checking if it passed the end of the matched string. This leads to a heap-based buffer over-read (github-poc)
- Heap-buffer-overflow in Oniguruma (function gb18030_mbc_enc_len) (github-poc)
- Heap-buffer-overflow in Oniguruma (function gb18030_mbc_enc_len) (github-poc)
Timeline
- CVE Published
- Apr 9, 2026 Security Advisory