CVE-2020-26159

HIGH

Description

In Oniguruma 6.9.5_rev1, an attacker able to supply a regular expression for compilation may be able to overflow a buffer by one byte in concat_opt_exact_str in src/regcomp.c .

References

http://www.openwall.com/lists/oss-security/2020/09/30/7

https://github.com/kkos/oniguruma/commit/cbe9f8bd9cfc6c3c87a60fbae58fa1a85db59df0

https://github.com/kkos/oniguruma/issues/207

https://lists.fedoraproject.org/archives/list/[email protected]/message/2ZCUPCKJNSUHQMXXZBRNDDGQQLBJ2ACT/

https://lists.fedoraproject.org/archives/list/[email protected]/message/4NHVR7X5ZLXUGW3PBCPQMNFQ3OJCSMQD/

https://lists.fedoraproject.org/archives/list/[email protected]/message/ZFUJY7BUIFBTZ3IUHVHCID4JYCRDGKPS/

Details

Source: MITRE

Published: 2020-09-30

Updated: 2020-10-15

Type: CWE-787

Risk Information

CVSS v2.0

Base Score: 7.5

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 10

Severity: HIGH

CVSS v3.0

Base Score: 8.6

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H

Impact Score: 4.7

Exploitability Score: 3.9

Severity: HIGH

Tenable Plugins

View all (7 total)

ID	Name	Product	Family	Severity
142733	Amazon Linux 2 : oniguruma (ALAS-2020-1560)	Nessus	Amazon Linux Local Security Checks	high
142546	Debian DLA-2431-1 : libonig security update	Nessus	Debian Local Security Checks	high
141864	Photon OS 3.0: Oniguruma PHSA-2020-3.0-0155	Nessus	PhotonOS Local Security Checks	high
141643	Photon OS 2.0: Oniguruma PHSA-2020-2.0-0291	Nessus	PhotonOS Local Security Checks	high
141386	Fedora 31 : oniguruma (2020-d53469eceb)	Nessus	Fedora Local Security Checks	high
141376	Fedora 32 : oniguruma (2020-952c499e9d)	Nessus	Fedora Local Security Checks	high
141297	Fedora 33 : oniguruma (2020-bc758654d1)	Nessus	Fedora Local Security Checks	high