cve/CVE-2017-9228.md at 9cc2023bd8dbe0ab8c5f051fa9a43f1e04594987

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00

0xMarcio 49bdc782b3 Update Sun May 26 14:27:04 CEST 2024

2024-05-26 14:27:05 +02:00

Description

An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod in Ruby through 2.4.1 and mbstring in PHP through 7.1.5. A heap out-of-bounds write occurs in bitset_set_range() during regular expression compilation due to an uninitialized variable from an incorrect state transition. An incorrect state transition in parse_char_class() could create an execution path that leaves a critical local variable uninitialized until it's used as an index, resulting in an out-of-bounds write memory corruption.

POC

Reference

No PoCs from references.

Github

https://github.com/balabit-deps/balabit-os-7-libonig
https://github.com/balabit-deps/balabit-os-8-libonig
https://github.com/onivim/esy-oniguruma

1.0 KiB Raw Blame History

CVE-2017-9228

Description

POC

Reference

Github

1.0 KiB

Raw Blame History