CVE-2018-20796

Published: 26 February 2019

In the GNU C Library (aka glibc or libc6) through 2.29, check_dst_limits_calc_pos_1 in posix/regexec.c has Uncontrolled Recursion, as demonstrated by '(\227|)(\\1\\1|t1|\\\2537)+' in grep.

Priority

Negligible

CVSS 3 base score: 7.5

Status

Package Release Status
eglibc
Launchpad, Ubuntu, Debian
Upstream Deferred

Ubuntu 20.10 (Groovy Gorilla) Does not exist

Ubuntu 20.04 LTS (Focal Fossa) Does not exist

Ubuntu 18.04 LTS (Bionic Beaver) Does not exist

Ubuntu 16.04 LTS (Xenial Xerus) Does not exist

Ubuntu 14.04 ESM (Trusty Tahr) Ignored

glibc
Launchpad, Ubuntu, Debian
Upstream Deferred

Ubuntu 20.10 (Groovy Gorilla) Ignored

Ubuntu 20.04 LTS (Focal Fossa) Ignored

Ubuntu 18.04 LTS (Bionic Beaver) Ignored

Ubuntu 16.04 LTS (Xenial Xerus) Ignored

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

Notes

AuthorNote
mdeslaur
glibc regex compiler is not supposed to be exposed to untrusted
content, and upstream does not consider this to be a security
issue: https://sourceware.org/glibc/wiki/Security%20Exceptions
https://lists.gnu.org/r/bug-gnulib/2018-09/msg00068.html

as of 2020-06-04, no fix available from upstream.
We will not be fixing this issue in Ubuntu, marking as
ignored.

References

Bugs