VYPR
Unrated severityNVD Advisory· Published Nov 16, 2019· Updated Aug 5, 2024

CVE-2019-19012

CVE-2019-19012

Description

An integer overflow in the search_in_range function in regexec.c in Oniguruma 6.x before 6.9.4_rc2 leads to an out-of-bounds read, in which the offset of this read is under the control of an attacker. (This only affects the 32-bit compiled version). Remote attackers can cause a denial-of-service or information disclosure, or possibly have unspecified other impact, via a crafted regular expression.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

37

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.