In the GNU C Library (aka glibc or libc6) through 2.29, check_dst_limits_calc_pos_1 in posix/regexec.c has Uncontrolled Recursion, as demonstrated by (227|)(11|t1|2537)+ in grep.
Weakness
The product does not properly control the amount of recursion that takes place, consuming excessive resources, such as allocated memory or the program stack.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Glibc | Gnu | * | 2.29 (including) |
| Eglibc | Ubuntu | esm-infra-legacy/trusty | * |
| Eglibc | Ubuntu | precise/esm | * |
| Eglibc | Ubuntu | trusty | * |
| Eglibc | Ubuntu | trusty/esm | * |
| Glibc | Ubuntu | bionic | * |
| Glibc | Ubuntu | cosmic | * |
| Glibc | Ubuntu | devel | * |
| Glibc | Ubuntu | disco | * |
| Glibc | Ubuntu | eoan | * |
| Glibc | Ubuntu | esm-infra/bionic | * |
| Glibc | Ubuntu | esm-infra/focal | * |
| Glibc | Ubuntu | esm-infra/xenial | * |
| Glibc | Ubuntu | focal | * |
| Glibc | Ubuntu | xenial | * |
Potential Mitigations
Related Attack Patterns
References
- http://www.securityfocus.com/bid/107160
- https://debbugs.gnu.org/cgi/bugreport.cgi?bug=34141
- https://lists.gnu.org/archive/html/bug-gnulib/2019-01/msg00108.html
- https://security.netapp.com/advisory/ntap-20190315-0002/
- https://support.f5.com/csp/article/K26346590?utm_source=f5support\u0026amp%3Butm_medium=RSS
- http://www.securityfocus.com/bid/107160
- https://debbugs.gnu.org/cgi/bugreport.cgi?bug=34141
- https://lists.gnu.org/archive/html/bug-gnulib/2019-01/msg00108.html
- https://security.netapp.com/advisory/ntap-20190315-0002/
- https://support.f5.com/csp/article/K26346590?utm_source=f5support\u0026amp%3Butm_medium=RSS