The bmexec_trans function in kwset.c in grep 2.19 through 2.21 allows local users to cause a denial of service (out-of-bounds heap read and crash) via crafted input when using the -F option.
References
Information
Published : 2015-02-12 08:59
Updated : 2018-10-30 09:27
NVD link : CVE-2015-1345
Mitre link : CVE-2015-1345
JSON object : View
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
Products Affected
opensuse
- opensuse
gnu
- grep