CVE-2019-20454

by Fred · 14/02/2020

An out-of-bounds read was discovered in PCRE before 10.34 when the pattern X is JIT compiled and used to match specially crafted subjects in non-UTF mode. Applications that use PCRE to parse untrusted input may be vulnerable to this flaw, which would allow an attacker to crash the application. The flaw occurs in do_extuni_no_utf in pcre2_jit_compile.c.

Date published : 2020-02-14

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OQRAHYHLRNMBTPR3KXVM27NSZP3KTOPI/

https://security.gentoo.org/glsa/202006-16

CVE-2019-20454

Similar

Recent Posts

Categories

CVE-2019-20454

Share this:

Similar

Recent Posts

Categories

Tags