CVE-2019-9169

Priority
Description
In the GNU C Library (aka glibc or libc6) through 2.29, proceed_next_node
in posix/regexec.c has a heap-based buffer over-read via an attempted
case-insensitive regular-expression match.
Notes
Package
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):not-affected
Ubuntu 14.04 ESM (Trusty Tahr):not-affected
Ubuntu 16.04 LTS (Xenial Xerus):DNE
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 20.04 LTS (Focal Fossa):DNE
Ubuntu 20.10 (Groovy Gorilla):DNE
Patches:
Upstream:https://sourceware.org/git/?p=glibc.git;a=commitdiff;h=583dd860d5b833037175247230a328f0050dbfe9;hp=2bac7daa58da1a313bd452369b0508b31e146637
More Information

Updated: 2020-07-28 20:07:54 UTC (commit d26b6ca9f5b3adb89bb036ce73ae7dab894935ec)