VYPR
Unrated severityNVD Advisory· Published Mar 30, 2015· Updated Jun 17, 2026

CVE-2015-2305

CVE-2015-2305

Description

Integer overflow in the regcomp implementation in the Henry Spencer BSD regex library (aka rxspencer) alpha3.8.g5 on 32-bit platforms, as used in NetBSD through 6.1.5 and other products, might allow context-dependent attackers to execute arbitrary code via a large regular expression that leads to a heap-based buffer overflow.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

22

Patches

Vulnerability mechanics

References

21

News mentions

0

No linked articles in our index yet.