CVE-2020-23915
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2020-23915
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-23915.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2020-23915
- Downstream
- Published
- 2021-04-21T18:15:08.270Z
- Modified
- 2025-11-20T11:21:32.899559Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
An issue was discovered in cpp-peglib through v0.1.12. peg::resolveescapesequence() in peglib.h has a heap-based buffer over-read.
- References
Affected packages
Git / github.com/yhirose/cpp-peglib
Affected ranges
- Type
- GIT
- Repo
- https://github.com/yhirose/cpp-peglib
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
v0.*
v0.1.0
v0.1.1
v0.1.10
v0.1.11
v0.1.12
v0.1.2
v0.1.3
v0.1.4
v0.1.5
v0.1.6
v0.1.7
v0.1.8
v0.1.9
Database specific
vanir_signatures
[
{
"signature_type": "Function",
"source": "https://github.com/yhirose/cpp-peglib/commit/b3b29ce8f3acf3a32733d930105a17d7b0ba347e",
"id": "CVE-2020-23915-8629b90c",
"deprecated": false,
"target": {
"file": "peglib.h",
"function": "codepoint_length"
},
"digest": {
"function_hash": "73004964111901588551179169896409950747",
"length": 335.0
},
"signature_version": "v1"
},
{
"signature_type": "Line",
"source": "https://github.com/yhirose/cpp-peglib/commit/b3b29ce8f3acf3a32733d930105a17d7b0ba347e",
"id": "CVE-2020-23915-988a499c",
"deprecated": false,
"target": {
"file": "peglib.h"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"305731826359281247296869654299113449651",
"339036016034052883856440544981514003458",
"56011554680543042233893566455295825915",
"255636933513162664645131821946322598403",
"57542540629536009684787878544379393432",
"312831212263277916743638332390265291222",
"204655458009423361391753162629023155560",
"37513945751004088926040296577665629182"
]
},
"signature_version": "v1"
}
]