CVE-2019-9192

** DISPUTED ** In the GNU C Library (aka glibc or libc6) through 2.29, check_dst_limits_calc_pos_1 in posix/regexec.c has Uncontrolled Recursion, as demonstrated by '(|)(\1\1)*' in grep, a different issue than CVE-2018-20796. NOTE: the software maintainer disputes that this is a vulnerability because the behavior occurs only with a crafted pattern.
Configurations

Configuration 1

cpe:2.3:a:gnu:glibc:*:*:*:*:*:*:*:*

Information

Published : 2019-02-26 06:29

Updated : 2020-08-24 05:37


NVD link : CVE-2019-9192

Mitre link : CVE-2019-9192

Products Affected
No products.
CWE
CWE-674

Uncontrolled Recursion