Home

CVE-2017-9226

Description

An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod in Ruby through 2.4.1 and mbstring in PHP through 7.1.5. A heap out-of-bounds write or read occurs in next_state_val() during regular expression compilation. Octal numbers larger than 0xff are not handled correctly in fetch_token() and fetch_token_in_cc(). A malformed regular expression containing an octal number in the form of 700 would produce an invalid code point value larger than 0xff in next_state_val(), resulting in an out-of-bounds write memory corruption.

Risk Information

Base Score
9.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
1.036

Associated Vulnerability

VulnerabilityOS Platform
oniguruma Security Update (ALAS-2023-2311) oniguruma-5.9.6-1.amzn2.0.7.i686.rpmLinux
oniguruma Security Update (ALAS-2023-2311) oniguruma-5.9.6-1.amzn2.0.7.x86_64.rpmLinux
oniguruma Security Update (ALAS-2023-2311) oniguruma-devel-5.9.6-1.amzn2.0.7.x86_64.rpmLinux
php Security Update (ALAS-2025-2832) php-xmlrpc-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS-2025-2832) php-xml-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS-2025-2832) php-soap-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS-2025-2832) php-snmp-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS-2025-2832) php-recode-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS-2025-2832) php-pspell-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS-2025-2832) php-process-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS-2025-2832) php-pgsql-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS-2025-2832) php-pdo-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS-2025-2832) php-odbc-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS-2025-2832) php-mysqlnd-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS-2025-2832) php-mbstring-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS-2025-2832) php-ldap-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS-2025-2832) php-intl-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS-2025-2832) php-gd-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS-2025-2832) php-fpm-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS-2025-2832) php-enchant-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS-2025-2832) php-embedded-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS-2025-2832) php-devel-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS-2025-2832) php-dba-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS-2025-2832) php-common-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS-2025-2832) php-cli-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS-2025-2832) php-bcmath-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS-2025-2832) php-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
oniguruma Security Update (ALAS2-2023-2311) oniguruma-5.9.6-1.amzn2.0.7.x86_64.rpmLinux
oniguruma Security Update (ALAS2-2023-2311) oniguruma-5.9.6-1.amzn2.0.7.i686.rpmLinux
oniguruma Security Update (ALAS2-2023-2311) oniguruma-devel-5.9.6-1.amzn2.0.7.x86_64.rpmLinux
php Security Update (ALAS2-2025-2832) php-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS2-2025-2832) php-bcmath-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS2-2025-2832) php-cli-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS2-2025-2832) php-common-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS2-2025-2832) php-dba-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS2-2025-2832) php-devel-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS2-2025-2832) php-embedded-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS2-2025-2832) php-enchant-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS2-2025-2832) php-fpm-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS2-2025-2832) php-gd-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS2-2025-2832) php-intl-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS2-2025-2832) php-ldap-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS2-2025-2832) php-mbstring-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS2-2025-2832) php-mysqlnd-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS2-2025-2832) php-odbc-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS2-2025-2832) php-pdo-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS2-2025-2832) php-pgsql-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS2-2025-2832) php-process-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS2-2025-2832) php-pspell-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS2-2025-2832) php-recode-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS2-2025-2832) php-snmp-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS2-2025-2832) php-soap-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS2-2025-2832) php-xml-5.4.16-46.amzn2.0.6.x86_64.rpmLinux
php Security Update (ALAS2-2025-2832) php-xmlrpc-5.4.16-46.amzn2.0.6.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234