CVE-2019-19203

An issue was discovered in Oniguruma 6.x before 6.9.4_rc2. In the function gb18030_mbc_enc_len in file gb18030.c, a UChar pointer is dereferenced without checking if it passed the end of the matched string. This leads to a heap-based buffer over-read.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 89%
Affected Products (NVD)
VendorProductVersion
oniguruma_projectoniguruma
6.0.0 ≤
𝑥
< 6.9.4
oniguruma_projectoniguruma
6.9.4:rc1
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
libonig
bookworm
6.9.8-1
fixed
bullseye
6.9.6-1.1
fixed
buster
no-dsa
jessie
ignored
sid
6.9.9-1
fixed
trixie
6.9.9-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
libonig
bionic
Fixed 6.7.0-1ubuntu0.1~esm2
released
disco
ignored
eoan
ignored
focal
not-affected
groovy
not-affected
hirsute
not-affected
impish
not-affected
jammy
not-affected
kinetic
not-affected
lunar
not-affected
trusty
Fixed 5.9.1-1ubuntu1.1+esm3
released
xenial
Fixed 5.9.6-1ubuntu0.1+esm3
released
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
libonig4
suse enterprise desktop 15 SP3
6.7.0-150000.3.3.1
fixed
suse enterprise desktop 15 SP4
6.7.0-150000.3.3.1
fixed
suse enterprise desktop 15 SP5
6.7.0-150000.3.3.1
fixed
suse enterprise desktop 15 SP6
6.7.0-150000.3.3.1
fixed
suse enterprise desktop 15 SP7
6.7.0-150000.3.3.1
fixed
suse enterprise sap 15 SP1
6.7.0-150000.3.3.1
fixed
suse enterprise sap 15 SP2
6.7.0-150000.3.3.1
fixed
suse enterprise sap 15 SP3
6.7.0-150000.3.3.1
fixed
suse enterprise sap 15 SP4
6.7.0-150000.3.3.1
fixed
suse enterprise sap 15 SP5
6.7.0-150000.3.3.1
fixed
suse enterprise sap 15 SP6
6.7.0-150000.3.3.1
fixed
suse enterprise sap 15 SP7
6.7.0-150000.3.3.1
fixed
suse enterprise server 15 SP1
6.7.0-150000.3.3.1
fixed
suse enterprise server 15 SP2
6.7.0-150000.3.3.1
fixed
suse enterprise server 15 SP3
6.7.0-150000.3.3.1
fixed
suse enterprise server 15 SP4
6.7.0-150000.3.3.1
fixed
suse enterprise server 15 SP5
6.7.0-150000.3.3.1
fixed
suse enterprise server 15 SP6
6.7.0-150000.3.3.1
fixed
suse enterprise server 15 SP7
6.7.0-150000.3.3.1
fixed
oniguruma-devel
suse enterprise desktop 15 SP3
6.7.0-150000.3.3.1
fixed
suse enterprise desktop 15 SP4
6.7.0-150000.3.3.1
fixed
suse enterprise desktop 15 SP5
6.7.0-150000.3.3.1
fixed
suse enterprise desktop 15 SP6
6.7.0-150000.3.3.1
fixed
suse enterprise desktop 15 SP7
6.7.0-150000.3.3.1
fixed
suse enterprise sap 15 SP1
6.7.0-150000.3.3.1
fixed
suse enterprise sap 15 SP2
6.7.0-150000.3.3.1
fixed
suse enterprise sap 15 SP3
6.7.0-150000.3.3.1
fixed
suse enterprise sap 15 SP4
6.7.0-150000.3.3.1
fixed
suse enterprise sap 15 SP5
6.7.0-150000.3.3.1
fixed
suse enterprise sap 15 SP6
6.7.0-150000.3.3.1
fixed
suse enterprise sap 15 SP7
6.7.0-150000.3.3.1
fixed
suse enterprise server 15 SP1
6.7.0-150000.3.3.1
fixed
suse enterprise server 15 SP2
6.7.0-150000.3.3.1
fixed
suse enterprise server 15 SP3
6.7.0-150000.3.3.1
fixed
suse enterprise server 15 SP4
6.7.0-150000.3.3.1
fixed
suse enterprise server 15 SP5
6.7.0-150000.3.3.1
fixed
suse enterprise server 15 SP6
6.7.0-150000.3.3.1
fixed
suse enterprise server 15 SP7
6.7.0-150000.3.3.1
fixed
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
oniguruma
RHEL 8
0:6.8.2-2.1.el8_9
fixed
RHEL 8.6 AUS
0:6.8.2-2.1.el8_6
fixed
RHEL 8.6 E4S
0:6.8.2-2.1.el8_6
fixed
RHEL 8.6 EUS
0:6.8.2-2.1.el8_6
fixed
RHEL 8.6 TUS
0:6.8.2-2.1.el8_6
fixed
RHEL 8.8 AUS
0:6.8.2-2.1.el8_8
fixed
RHEL 8.8 E4S
0:6.8.2-2.1.el8_8
fixed
RHEL 8.8 EUS
0:6.8.2-2.1.el8_8
fixed
RHEL 8.8 TUS
0:6.8.2-2.1.el8_8
fixed
oniguruma-devel
RHEL 8
0:6.8.2-2.1.el8_9
fixed
RHEL 8.6 AUS
0:6.8.2-2.1.el8_6
fixed
RHEL 8.6 E4S
0:6.8.2-2.1.el8_6
fixed
RHEL 8.6 EUS
0:6.8.2-2.1.el8_6
fixed
RHEL 8.6 TUS
0:6.8.2-2.1.el8_6
fixed
RHEL 8.8 AUS
0:6.8.2-2.1.el8_8
fixed
RHEL 8.8 E4S
0:6.8.2-2.1.el8_8
fixed
RHEL 8.8 EUS
0:6.8.2-2.1.el8_8
fixed
RHEL 8.8 TUS
0:6.8.2-2.1.el8_8
fixed
Amazon Linux logo
Amazon Linux Releases
Amazon Package
Release
php
Amazon Linux 2
0:5.4.16-46.amzn2.0.6
fixed
php-bcmath
Amazon Linux 2
0:5.4.16-46.amzn2.0.6
fixed
php-cli
Amazon Linux 2
0:5.4.16-46.amzn2.0.6
fixed
php-common
Amazon Linux 2
0:5.4.16-46.amzn2.0.6
fixed
php-dba
Amazon Linux 2
0:5.4.16-46.amzn2.0.6
fixed
php-debuginfo
Amazon Linux 2
0:5.4.16-46.amzn2.0.6
fixed
php-devel
Amazon Linux 2
0:5.4.16-46.amzn2.0.6
fixed
php-embedded
Amazon Linux 2
0:5.4.16-46.amzn2.0.6
fixed
php-enchant
Amazon Linux 2
0:5.4.16-46.amzn2.0.6
fixed
php-fpm
Amazon Linux 2
0:5.4.16-46.amzn2.0.6
fixed
php-gd
Amazon Linux 2
0:5.4.16-46.amzn2.0.6
fixed
php-intl
Amazon Linux 2
0:5.4.16-46.amzn2.0.6
fixed
php-ldap
Amazon Linux 2
0:5.4.16-46.amzn2.0.6
fixed
php-mbstring
Amazon Linux 2
0:5.4.16-46.amzn2.0.6
fixed
php-mysqlnd
Amazon Linux 2
0:5.4.16-46.amzn2.0.6
fixed
php-odbc
Amazon Linux 2
0:5.4.16-46.amzn2.0.6
fixed
php-pdo
Amazon Linux 2
0:5.4.16-46.amzn2.0.6
fixed
php-pgsql
Amazon Linux 2
0:5.4.16-46.amzn2.0.6
fixed
php-process
Amazon Linux 2
0:5.4.16-46.amzn2.0.6
fixed
php-pspell
Amazon Linux 2
0:5.4.16-46.amzn2.0.6
fixed
php-recode
Amazon Linux 2
0:5.4.16-46.amzn2.0.6
fixed
php-snmp
Amazon Linux 2
0:5.4.16-46.amzn2.0.6
fixed
php-soap
Amazon Linux 2
0:5.4.16-46.amzn2.0.6
fixed
php-xml
Amazon Linux 2
0:5.4.16-46.amzn2.0.6
fixed
php-xmlrpc
Amazon Linux 2
0:5.4.16-46.amzn2.0.6
fixed