FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

uriparser -- Out-of-bounds read

Affected packages
uriparser < 0.9.1

Details

VuXML ID 924bd4f8-11e7-11e9-9fe8-5404a68ad561
Discovery 2019-01-02
Entry 2019-01-06

Upstream project reports:

Out-of-bounds read in uriParse*Ex* for incomplete URIs with IPv6 addresses with embedded IPv4 address, e.g. "//[::44.1"; mitigated if passed parameter afterLast points to readable memory containing a '\0' byte.

References

URL https://github.com/uriparser/uriparser/blob/uriparser-0.9.1/ChangeLog