Your submission was sent successfully! Close

CVE-2017-9225

Published: 24 May 2017

An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod in Ruby through 2.4.1 and mbstring in PHP through 7.1.5. A stack out-of-bounds write in onigenc_unicode_get_case_fold_codes_by_str() occurs during regular expression compilation. Code point 0xFFFFFFFF is not properly handled in unicode_unfold_key(). A malformed regular expression could result in 4 bytes being written off the end of a stack buffer of expand_case_fold_string() during the call to onigenc_unicode_get_case_fold_codes_by_str(), a typical stack buffer overflow.

Priority

Medium

CVSS 3 base score: 9.8

Status

Package Release Status
libonig
Launchpad, Ubuntu, Debian
artful Ignored
(reached end-of-life)
bionic
Released (6.3.0-1)
precise Does not exist

trusty Not vulnerable
(code not present)
upstream Needs triage

xenial Not vulnerable
(code not present)
yakkety Not vulnerable
(code not present)
zesty Ignored
(reached end-of-life)
php5
Launchpad, Ubuntu, Debian
artful Does not exist

bionic Does not exist

precise Not vulnerable
(code not present)
trusty Not vulnerable
(code not present)
upstream Needs triage

xenial Does not exist

zesty Does not exist

php7.0
Launchpad, Ubuntu, Debian
artful Does not exist

bionic Does not exist

precise Does not exist

trusty Does not exist

upstream Needs triage

xenial Not vulnerable
(code not present)
zesty Not vulnerable
(code not present)
php7.1
Launchpad, Ubuntu, Debian
artful Not vulnerable
(code not present)
bionic Does not exist

precise Does not exist

trusty Does not exist

upstream Needs triage

xenial Does not exist

zesty Does not exist