DEBIAN-CVE-2025-15536
- Source
- https://security-tracker.debian.org/tracker/CVE-2025-15536
- Import Source
- https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2025-15536.json
- JSON Data
- https://api.osv.dev/v1/vulns/DEBIAN-CVE-2025-15536
- Upstream
- Published
- 2026-01-18T09:15:46.960Z
- Modified
- 2026-03-17T02:51:13.089290Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
A weakness has been identified in BYVoid OpenCC up to 1.1.9. This vulnerability affects the function opencc::MaxMatchSegmentation of the file src/MaxMatchSegmentation.cpp. This manipulation causes heap-based buffer overflow. The attack is restricted to local execution. The exploit has been made available to the public and could be used for attacks. Patch name: 345c9a50ab07018f1b4439776bad78a0d40778ec. To fix this issue, it is recommended to deploy a patch.
- References
Affected packages
Debian:11 / opencc
Package
- Name
- opencc
- Purl
- pkg:deb/debian/opencc?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
1.*
1.1.1+git20200624+ds2-10
1.1.3+ds1-1
1.1.3+ds1-2
1.1.3+ds1-3
1.1.3+ds1-4
1.1.3+ds1-5
1.1.4+ds1-1
1.1.4+ds1-2
1.1.4+ds1-3
1.1.4+ds1-4
1.1.5+ds1-1
1.1.6+ds1-1
1.1.6+ds1-2
1.1.7+ds1-1
1.1.8+ds1-1~exp1
1.1.8+ds1-1
1.1.8+ds1-2
1.1.8+ds1-3
1.1.9+ds1-1~exp1
1.1.9+ds1-1
1.1.9+ds1-2
1.1.9+ds1-3~exp1
1.1.9+ds1-3
1.1.9+ds1-4
1.2.0+ds1-1~exp1
1.2.0+ds1-1~exp2
1.2.0+ds1-1
Debian:12 / opencc
Package
- Name
- opencc
- Purl
- pkg:deb/debian/opencc?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Debian:13 / opencc
Package
- Name
- opencc
- Purl
- pkg:deb/debian/opencc?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Debian:14 / opencc
Package
- Name
- opencc
- Purl
- pkg:deb/debian/opencc?arch=source