An issue was discovered in Oniguruma 6.x before 6.9.4rc2. In the function gb18030mbcenclen in file gb18030.c, a UChar pointer is dereferenced without checking if it passed the end of the matched string. This leads to a heap-based buffer over-read.
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "5.9.1-1ubuntu1.1+esm3", "binary_name": "libonig-dev" }, { "binary_version": "5.9.1-1ubuntu1.1+esm3", "binary_name": "libonig-dev-dbgsym" }, { "binary_version": "5.9.1-1ubuntu1.1+esm3", "binary_name": "libonig2" }, { "binary_version": "5.9.1-1ubuntu1.1+esm3", "binary_name": "libonig2-dbg" }, { "binary_version": "5.9.1-1ubuntu1.1+esm3", "binary_name": "libonig2-dbgsym" } ] }
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "5.9.6-1ubuntu0.1+esm3", "binary_name": "libonig-dev" }, { "binary_version": "5.9.6-1ubuntu0.1+esm3", "binary_name": "libonig-dev-dbgsym" }, { "binary_version": "5.9.6-1ubuntu0.1+esm3", "binary_name": "libonig2" }, { "binary_version": "5.9.6-1ubuntu0.1+esm3", "binary_name": "libonig2-dbg" }, { "binary_version": "5.9.6-1ubuntu0.1+esm3", "binary_name": "libonig2-dbgsym" } ] }
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "6.7.0-1ubuntu0.1~esm2", "binary_name": "libonig-dev" }, { "binary_version": "6.7.0-1ubuntu0.1~esm2", "binary_name": "libonig4" }, { "binary_version": "6.7.0-1ubuntu0.1~esm2", "binary_name": "libonig4-dbgsym" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "6.9.4-1", "binary_name": "libonig-dev" }, { "binary_version": "6.9.4-1", "binary_name": "libonig5" }, { "binary_version": "6.9.4-1", "binary_name": "libonig5-dbgsym" } ] }