CVE-2019-20433 by Fred · 27/01/2020 libaspell.a in GNU Aspell before 0.60.8 has a buffer over-read for a string ending with a single ‘