Advisories » MGASA-2021-0299

Updated re2c package fixes a security vulnerability

Publication date: 29 Jun 2021
Modification date: 29 Jun 2021
Type: security
Affected Mageia releases : 7
CVE: CVE-2018-21232

Description

re2c before 2.0 has uncontrolled recursion that causes stack consumption in
find_fixed_tags (CVE-2018-21232).
                

References

• https://bugs.mageia.org/show_bug.cgi?id=26549
• https://github.com/skvadrik/re2c/issues/219
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-21232

SRPMS

7/core

• re2c-2.0.3-1.mga7