In the GNU C Library (aka glibc or libc6) through 2.29, proceed_next_node in posix/regexec.c has a heap-based buffer over-read via an attempted case-insensitive regular-expression match.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
History
21 Nov 2024, 04:51
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.securityfocus.com/bid/107160 - Broken Link | |
References | () https://debbugs.gnu.org/cgi/bugreport.cgi?bug=34140 - Exploit, Mailing List, Vendor Advisory | |
References | () https://debbugs.gnu.org/cgi/bugreport.cgi?bug=34142 - Exploit, Mailing List, Vendor Advisory | |
References | () https://kc.mcafee.com/corporate/index?page=content&id=SB10278 - Third Party Advisory | |
References | () https://security.gentoo.org/glsa/202006-04 - Third Party Advisory | |
References | () https://security.netapp.com/advisory/ntap-20190315-0002/ - Patch, Third Party Advisory | |
References | () https://sourceware.org/bugzilla/show_bug.cgi?id=24114 - Issue Tracking, Patch, Third Party Advisory | |
References | () https://sourceware.org/git/gitweb.cgi?p=glibc.git%3Ba=commit%3Bh=583dd860d5b833037175247230a328f0050dbfe9 - | |
References | () https://support.f5.com/csp/article/K54823184 - Third Party Advisory | |
References | () https://usn.ubuntu.com/4416-1/ - Third Party Advisory | |
References | () https://www.oracle.com/security-alerts/cpuapr2022.html - Not Applicable |
13 Jun 2022, 18:59
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:* cpe:2.3:a:mcafee:web_gateway:*:*:*:*:*:*:*:* cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:* cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:* |
|
References | (BID) http://www.securityfocus.com/bid/107160 - Broken Link | |
References | (UBUNTU) https://usn.ubuntu.com/4416-1/ - Third Party Advisory | |
References | (CONFIRM) https://support.f5.com/csp/article/K54823184 - Third Party Advisory | |
References | (GENTOO) https://security.gentoo.org/glsa/202006-04 - Third Party Advisory | |
References | (MISC) https://www.oracle.com/security-alerts/cpuapr2022.html - Not Applicable | |
References | (CONFIRM) https://kc.mcafee.com/corporate/index?page=content&id=SB10278 - Third Party Advisory |
20 Apr 2022, 00:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
Information
Published : 2019-02-26 02:29
Updated : 2024-11-21 04:51
NVD link : CVE-2019-9169
Mitre link : CVE-2019-9169
CVE.ORG link : CVE-2019-9169
JSON object : View
Products Affected
canonical
- ubuntu_linux
gnu
- glibc
netapp
- ontap_select_deploy_administration_utility
- cloud_backup
- steelstore_cloud_integrated_storage
mcafee
- web_gateway
CWE
CWE-125
Out-of-bounds Read