Candidate: CVE-2022-23901
PublicDate: 2022-03-29 12:15:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23901
 https://github.com/skvadrik/re2c/issues/394
 https://github.com/skvadrik/re2c/commit/a3473fd7be829cb33907cb08612f955133c70a96 (3.0)
 https://github.com/skvadrik/re2c/commit/039c18949190c5de5397eba504d2c75dad2ea9ca (3.0)
Description:
 A stack overflow re2c 2.2 exists due to infinite recursion issues in
 src/dfa/dead_rules.cc.
Ubuntu-Description:
Notes:
Mitigation:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H [9.8 CRITICAL]


Patches_re2c:
upstream_re2c: released (3.0-1)
trusty/esm_re2c: needs-triage
esm-infra/xenial_re2c: needs-triage
trusty_re2c: ignored (out of standard support)
xenial_re2c: ignored (out of standard support)
bionic_re2c: needs-triage
focal_re2c: needs-triage
impish_re2c: needs-triage
jammy_re2c: not-affected (3.0-1)
devel_re2c: not-affected (3.0-1)