SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

Download | Alert*

OVAL

re2c: heap-based buffer overflow in Scanner::fill in parse/scanner.cc (CVE-2020-11958)

ID: oval:org.secpod.oval:def:1802009	Date: (C)2022-03-25 (M)2023-02-01
Class: PATCH	Family: unix

re2c 1.3 has a heap-based buffer overflow in Scanner::fill in parse/scanner.cc via a long lexeme.

Platform:

Alpine Linux 3.11

Alpine Linux 3.12

Alpine Linux 3.13

Alpine Linux 3.14

Alpine Linux 3.15

Product:

re2c

Reference:

11468