RSS   Vulnerabilities for 'Onigmo'   RSS

2019-09-09
 
CVE-2019-16162

CWE-125
 

 
Onigmo through 6.2.0 has an out-of-bounds read in parse_char_class because of missing codepoint validation in regenc.c.

 
 
CVE-2019-16161

CWE-476
 

 
Onigmo through 6.2.0 has a NULL pointer dereference in onig_error_code_to_str because of fetch_token in regparse.c.

 


Copyright 2024, cxsecurity.com

 

Back to Top