USN-5610-1: rust-regex vulnerability
14 September 2022
rust-regex could be made to crash if it received specially crafted input.
Releases
Packages
- rust-regex - Regular expressions for Rust
Details
Addison Crump discovered that rust-regex did not properly limit
the complexity of the regular expressions (regex) it parses.
An attacker could possibly use this issue to cause a denial of
service.
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 22.04
Ubuntu 20.04
In general, a standard system update will make all the necessary changes.