oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: re2c: infinite loop

From: Agostino Sarubbo <ago () gentoo org>
Date: Thu, 14 May 2020 11:17:24 +0200
On lunedì 27 aprile 2020 13:07:00 CEST Agostino Sarubbo wrote:

Hello all,

re2c is affected by an infinite loop.

It was initially discovered by Sergei Trofimovich (slyfox) and reported by
me privately to upstream.
The upstream reference is at: https://github.com/skvadrik/re2c/issues/219
There is no CVE assigned.


This is CVE-2018-21232

Agostino
Previous By Date Next
Previous By Thread Next

Current thread: