Bugzilla – Bug 1141157
VUL-0: CVE-2019-13225: oniguruma: null-pointer dereference in match_at() in regexec.c
Last modified: 2020-06-26 09:41:52 UTC
A NULL Pointer Dereference in match_at() in regexec.c in Oniguruma 6.9.2 allows attackers to potentially cause denial of service by providing a crafted regular expression. Oniguruma issues often affect Ruby, as well as common optional libraries for PHP and Rust.