It was discovered that Oniguruma incorrectly handled certain regular expressions. An attacker could possibly use this issue to cause a denial of service, obtain sensitive information or other unspecified impact. This issue only affected Ubuntu 16.04 ESM and Ubuntu 18.04 ESM. (CVE-2019-16163, CVE-2019-19012, CVE-2019-19204, CVE-2019-19246)
It was discovered that Oniguruma incorrectly handled memory when using certain UChar pointers. An attacker could possibly use this issue to cause a denial of service or sensitive information disclosure. (CVE-2019-19203)
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "binaries": [ { "libonig-dev": "5.9.1-1ubuntu1.1+esm3", "libonig-dev-dbgsym": "5.9.1-1ubuntu1.1+esm3", "libonig2-dbgsym": "5.9.1-1ubuntu1.1+esm3", "libonig2": "5.9.1-1ubuntu1.1+esm3", "libonig2-dbg": "5.9.1-1ubuntu1.1+esm3" } ] }
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "binaries": [ { "libonig-dev": "5.9.6-1ubuntu0.1+esm3", "libonig-dev-dbgsym": "5.9.6-1ubuntu0.1+esm3", "libonig2-dbgsym": "5.9.6-1ubuntu0.1+esm3", "libonig2": "5.9.6-1ubuntu0.1+esm3", "libonig2-dbg": "5.9.6-1ubuntu0.1+esm3" } ] }