Information on source package libonig

Available versions

ReleaseVersion
jessie5.9.5-3.2+deb8u1
jessie (security)5.9.5-3.2+deb8u3
stretch6.1.3-2
buster6.9.1-1
bullseye6.9.2-1
sid6.9.2-1

Open issues

BugjessiestretchbusterbullseyesidDescription
CVE-2019-16163fixedvulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableOniguruma before 6.9.3 allows Stack Exhaustion in regcomp.c because of ...
CVE-2019-13225fixedvulnerable (no DSA)vulnerable (no DSA)fixedfixedA NULL Pointer Dereference in match_at() in regexec.c in Oniguruma 6.9 ...
CVE-2019-13224fixedvulnerable (no DSA)vulnerable (no DSA)fixedfixedA use-after-free in onig_new_deluxe() in regext.c in Oniguruma 6.9.2 a ...

Resolved issues

BugDescription
CVE-2017-9229An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod i ...
CVE-2017-9228An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod i ...
CVE-2017-9227An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod i ...
CVE-2017-9226An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod i ...
CVE-2017-9225An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod i ...
CVE-2017-9224An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod i ...

Security announcements

DSA / DLADescription
DLA-1918-1libonig - security update
DLA-1854-1libonig - security update
DLA-958-1libonig - security update

Search for package or bug name: Reporting problems