CVE-2008-3196

Source
https://cve.org/CVERecord?id=CVE-2008-3196
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2008-3196.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2008-3196
Downstream
Published
2008-07-16T18:41:00Z
Modified
2026-04-10T03:40:00.318916Z
Summary
[none]
Details

skeleton.c in yacc does not properly handle reduction of a rule with an empty right hand side, which allows context-dependent attackers to cause an out-of-bounds stack access when the yacc stack pointer points to the end of the stack.

References

Affected packages