oniguruma: Buffer overflow in concat_opt_exact_str could result in DoS (CVE-2020-26159)

In Oniguruma 6.9.5_rev1, an attacker able to supply a regular expression for compilation may be able to overflow a buffer by one byte in concat_opt_exact_str in src/regcomp.c .

References:

https://github.com/kkos/oniguruma/issues/207
https://nvd.nist.gov/vuln/detail/CVE-2020-26159

Patch:

https://github.com/kkos/oniguruma/commit/cbe9f8bd9cfc6c3c87a60fbae58fa1a85db59df0

Affected branches:

Edited Oct 14, 2020 by Leo

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information