漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Several stack buffer overflows and pointer overflows in editorconfig-core-c
Vulnerability Description
editorconfig-core-c is theEditorConfig core library written in C (for use by plugins supporting EditorConfig parsing). In affected versions several overflows may occur in switch case '[' when the input pattern contains many escaped characters. The added backslashes leave too little space in the output pattern when processing nested brackets such that the remaining input length exceeds the output capacity. This issue has been addressed in release version 0.12.7. Users are advised to upgrade. There are no known workarounds for this vulnerability.
CVSS Information
N/A
Vulnerability Type
栈缓冲区溢出
Vulnerability Title
EditorConfig 安全漏洞
Vulnerability Description
EditorConfig是EditorConfig开源的一个应用程序。使得在不同的文本编辑器和不同的项目之间切换时,可以轻松地保持正确的编码样式。 EditorConfig存在安全漏洞,该漏洞源于当输入模式包含许多转义字符时,可能会发生多个溢出。
CVSS Information
N/A
Vulnerability Type
N/A