{ "threat_severity" : "Moderate", "public_date" : "2019-11-08T00:00:00Z", "bugzilla" : { "description" : "oniguruma: integer overflow in search_in_range function in regexec.c leads to out-of-bounds read", "id" : "1802051", "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=1802051" }, "cvss3" : { "cvss3_base_score" : "7.5", "cvss3_scoring_vector" : "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "status" : "verified" }, "cwe" : "CWE-190->CWE-125", "details" : [ "An integer overflow in the search_in_range function in regexec.c in Oniguruma 6.x before 6.9.4_rc2 leads to an out-of-bounds read, in which the offset of this read is under the control of an attacker. (This only affects the 32-bit compiled version). Remote attackers can cause a denial-of-service or information disclosure, or possibly have unspecified other impact, via a crafted regular expression.", "An integer overflow vulnerability leading to an out-of-bounds read was found in the way Oniguruma handled regular expression quantifiers. A remote attacker could abuse this flaw by providing a malformed regular expression that, when processed by an application linked to Oniguruma, could crash the application, causing a denial of service." ], "statement" : "This flaw only affected 32-bit compiled versions of Oniguruma. Therefore it did not affect the following 64-bit versions:\n* PHP and Ruby as shipped with Red Hat Enterprise Linux 7.\n* PHP and Ruby as shipped with Red Hat Software Collections 3.\n* PHP as shipped with Red Hat Enterprise Linux 8.\n* OpenShift containers: openshift4/ose-metering-hadoop, openshift4/ose-metering-hive, openshift4/ose-metering-presto.", "affected_release" : [ { "product_name" : "Red Hat Enterprise Linux 8", "release_date" : "2024-02-20T00:00:00Z", "advisory" : "RHSA-2024:0889", "cpe" : "cpe:/a:redhat:enterprise_linux:8", "package" : "oniguruma-0:6.8.2-2.1.el8_9" }, { "product_name" : "Red Hat Enterprise Linux 8", "release_date" : "2025-05-14T00:00:00Z", "advisory" : "RHSA-2025:7539", "cpe" : "cpe:/a:redhat:enterprise_linux:8", "package" : "ruby:2.5-8100020250506105643.489197e6" }, { "product_name" : "Red Hat Enterprise Linux 8.6 Extended Update Support", "release_date" : "2024-01-25T00:00:00Z", "advisory" : "RHSA-2024:0409", "cpe" : "cpe:/a:redhat:rhel_eus:8.6", "package" : "oniguruma-0:6.8.2-2.1.el8_6" }, { "product_name" : "Red Hat Enterprise Linux 8.8 Extended Update Support", "release_date" : "2024-01-30T00:00:00Z", "advisory" : "RHSA-2024:0572", "cpe" : "cpe:/a:redhat:rhel_eus:8.8", "package" : "oniguruma-0:6.8.2-2.1.el8_8" } ], "package_state" : [ { "product_name" : "Red Hat Enterprise Linux 5", "fix_state" : "Out of support scope", "package_name" : "php", "cpe" : "cpe:/o:redhat:enterprise_linux:5" }, { "product_name" : "Red Hat Enterprise Linux 5", "fix_state" : "Out of support scope", "package_name" : "php53", "cpe" : "cpe:/o:redhat:enterprise_linux:5" }, { "product_name" : "Red Hat Enterprise Linux 6", "fix_state" : "Out of support scope", "package_name" : "oniguruma", "cpe" : "cpe:/o:redhat:enterprise_linux:6" }, { "product_name" : "Red Hat Enterprise Linux 6", "fix_state" : "Out of support scope", "package_name" : "php", "cpe" : "cpe:/o:redhat:enterprise_linux:6" }, { "product_name" : "Red Hat Enterprise Linux 7", "fix_state" : "Not affected", "package_name" : "php", "cpe" : "cpe:/o:redhat:enterprise_linux:7" }, { "product_name" : "Red Hat Enterprise Linux 7", "fix_state" : "Not affected", "package_name" : "ruby", "cpe" : "cpe:/o:redhat:enterprise_linux:7" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "php:7.2/php", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "php:7.3/php", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Will not fix", "package_name" : "ruby:2.6/ruby", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat OpenShift Container Platform 4", "fix_state" : "Not affected", "package_name" : "oniguruma", "cpe" : "cpe:/a:redhat:openshift:4" }, { "product_name" : "Red Hat Software Collections", "fix_state" : "Not affected", "package_name" : "rh-php72-php", "cpe" : "cpe:/a:redhat:rhel_software_collections:3" }, { "product_name" : "Red Hat Software Collections", "fix_state" : "Not affected", "package_name" : "rh-php73-php", "cpe" : "cpe:/a:redhat:rhel_software_collections:3" }, { "product_name" : "Red Hat Software Collections", "fix_state" : "Not affected", "package_name" : "rh-ruby24-ruby", "cpe" : "cpe:/a:redhat:rhel_software_collections:3" }, { "product_name" : "Red Hat Software Collections", "fix_state" : "Not affected", "package_name" : "rh-ruby25-ruby", "cpe" : "cpe:/a:redhat:rhel_software_collections:3" }, { "product_name" : "Red Hat Software Collections", "fix_state" : "Not affected", "package_name" : "rh-ruby26-ruby", "cpe" : "cpe:/a:redhat:rhel_software_collections:3" } ], "references" : [ "https://www.cve.org/CVERecord?id=CVE-2019-19012\nhttps://nvd.nist.gov/vuln/detail/CVE-2019-19012" ], "name" : "CVE-2019-19012", "csaw" : false }