Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Integer overflow in the regcomp implementation in the Henry Spencer BSD regex library (aka rxspencer) alpha3.8.g5 on 32-bit platforms, as used in NetBSD through 6.1.5 and other products, might allow context-dependent attackers to execute arbitrary code via a large regular expression that leads to a heap-based buffer overflow.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
NetBSD Henry Spencer BSD regex library 缓冲区错误漏洞
Vulnerability Description
NetBSD是NetBSD基金会开发的一套免费开源的类Unix操作系统。Henry Spencer BSD regex library(又名rxspencer)是加拿大软件开发者Henry Spencer所研发的一套使用C语言编写的正则表达式软件库。 NetBSD 6.1.5及之前版本中使用的32-bit平台上的Henry Spencer BSD regex library alpha3.8.g5版本中的regcomp实现过程中存在整数溢出漏洞。攻击者可借助超大的正则表达式利用该漏洞执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A