k-takata/Onigmo

Releases85

Frequency1 month 2 days

Last Release over 7 years ago

Stars678

Onigmo is a regular expressions library forked from Oniguruma.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2019-16161 ↗	Sep 9, 2019Monday, 9 September 2019, 17:15	7.5 HIGH	5 MEDIUM
Onigmo through 6.2.0 has a NULL pointer dereference in onig_error_code_to_str because of fetch_token in regparse.c.
CVE-2019-16162 ↗	Sep 9, 2019Monday, 9 September 2019, 17:15	7.5 HIGH	5 MEDIUM
Onigmo through 6.2.0 has an out-of-bounds read in parse_char_class because of missing codepoint validation in regenc.c.