Lucene search
MitreCVELIST:CVE-2019-19204HistoryNov 21, 2019 - 8:06 p.m.
CVE-2019-19204
2019-11-2120:06:47
mitre
www.cve.org
2
An issue was discovered in Oniguruma 6.x before 6.9.4_rc2. In the function fetch_interval_quantifier (formerly known as fetch_range_quantifier) in regparse.c, PFETCH is called without checking PEND. This leads to a heap-based buffer over-read.
References
github.com/kkos/oniguruma/issues/162
github.com/kkos/oniguruma/releases/tag/v6.9.4_rc2
github.com/ManhNDd/CVE-2019-19204
github.com/tarantula-team/CVE-2019-19204
lists.debian.org/debian-lts-announce/2019/12/msg00002.html
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NO267PLHGYZSWX3XTRPKYBKD4J3YOU5V/
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V3MBNW6Z4DOXSCNWGBLQ7OA3OGUJ44WL/
usn.ubuntu.com/4460-1/
Related
osv
osv
CVE-2019-19204
2019-11-21 21:15:11
libonig - security update
2019-12-04 00:00:00
Moderate: oniguruma security update
2024-02-20 00:00:00
prion
prion
Heap overflow
2019-11-21 21:15:00
ubuntucve
ubuntucve
CVE-2019-19204
2019-11-21 00:00:00
debiancve
debiancve
CVE-2019-19204
2019-11-21 21:15:11
githubexploit
githubexploit
Exploit for Out-of-bounds Read in Oniguruma Project Oniguruma
2019-12-24 08:19:02
Exploit for Out-of-bounds Read in Oniguruma Project Oniguruma
2019-11-21 23:53:16
redhatcve
redhatcve
CVE-2019-19204
2020-02-12 10:14:22
alpinelinux
alpinelinux
CVE-2019-19204
2019-11-21 21:15:00
veracode
veracode
Buffer Over-read
2020-12-02 09:50:09
cve
cve
CVE-2019-19204
2019-11-21 21:15:11
nvd
nvd
CVE-2019-19204
2019-11-21 21:15:11
nessus
nessus
Debian DLA-2020-1 : libonig security update
2019-12-05 00:00:00
EulerOS 2.0 SP5 : ruby (EulerOS-SA-2020-1324)
2020-03-23 00:00:00
EulerOS 2.0 SP8 : ruby (EulerOS-SA-2020-1178)
2020-02-25 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2020-1324)
2020-03-24 00:00:00
Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2020-1178)
2020-02-25 00:00:00
Debian: Security Advisory (DLA-2020-1)
2019-12-05 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 8 package oniguruma version 6.9.4-alt1
2019-12-04 00:00:00
debian
debian
[SECURITY] [DLA 2020-1] libonig security update
2019-12-04 11:43:12
[SECURITY][DLA 2431-1] libonig security update
2020-11-05 01:29:26
ubuntu
ubuntu
Oniguruma vulnerabilities
2020-08-17 00:00:00
Oniguruma vulnerabilities
2022-10-10 00:00:00
amazon
amazon
Medium: oniguruma
2020-01-06 23:44:00
almalinux
almalinux
Moderate: oniguruma security update
2024-02-20 00:00:00
Moderate: php:7.3 security, bug fix, and enhancement update
2020-09-08 08:38:31
redhat
redhat
(RHSA-2024:0572) Moderate: oniguruma security update
2024-01-30 12:53:17
(RHSA-2024:0409) Moderate: oniguruma security update
2024-01-24 14:40:20
(RHSA-2024:0889) Moderate: oniguruma security update
2024-02-20 11:21:18
oraclelinux
oraclelinux
oniguruma security update
2024-02-20 00:00:00
php:7.3 security, bug fix, and enhancement update
2020-09-09 00:00:00
fedora
fedora
[SECURITY] Fedora 31 Update: oniguruma-6.9.4-1.fc31
2019-12-04 01:15:49
[SECURITY] Fedora 30 Update: oniguruma-6.9.2-4.fc30
2019-12-08 01:03:41
suse
suse
Security update for oniguruma (important)
2022-09-21 00:00:00
mageia
mageia
Updated oniguruma packages fix security vulnerabilities
2020-01-12 02:52:04
photon
photon
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2019-2.0-0196
2019-12-20 00:00:00
Critical Photon OS Security Update - PHSA-2020-0047
2020-01-16 00:00:00
Critical Photon OS Security Update - PHSA-2019-0196
2019-09-24 00:00:00
rocky
rocky
php:7.3 security, bug fix, and enhancement update
2020-09-08 08:38:31
ibm
ibm
Security Bulletin: IBM Cloud Pak for Network Automation 2.7.2 addresses multiple security vulnerabilities
2024-04-24 15:52:28
Security Bulletin: Multiple Security Vulnerabilities may affect IBM Robotic Process Automation for Cloud Pak.
2023-01-06 21:25:02
Security Bulletin: IBM QRadar SIEM contains multiple vulnerabilities
2024-04-11 18:19:49