Candidate: CVE-2020-24240
PublicDate: 2020-08-25 14:15:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24240
 https://lists.gnu.org/r/bug-bison/2020-07/msg00051.html
Description:
 GNU Bison before 3.7.1 has a use-after-free in _obstack_free in
 lib/obstack.c (called from gram_lex) when a '\0' byte is encountered. NOTE:
 there is a risk only if Bison is used with untrusted input, and the
 observed bug happens to cause unsafe behavior with a specific
 compiler/architecture. The bug report was intended to show that a crash may
 occur in Bison itself, not that a crash may occur in code that is generated
 by Bison.
Ubuntu-Description:
Notes:
Mitigation:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H [5.5 MEDIUM]


Patches_bison:
 upstream: https://github.com/akimd/bison/commit/be95a4fe2951374676efc9454ffee8638faaf68d
upstream_bison: released (3.7.1)
precise/esm_bison: DNE
trusty_bison: ignored (out of standard support)
trusty/esm_bison: DNE
xenial_bison: ignored (end of standard support, was needed)
esm-infra/xenial_bison: needed
bionic_bison: needed
focal_bison: needed
groovy_bison: ignored (reached end-of-life)
hirsute_bison: ignored (reached end-of-life)
impish_bison: needed
jammy_bison: needed
devel_bison: needed