Heap-based buffer overflow in the yy_get_next_buffer function in Flex prior to 2.6.1 might allow context-dependent malicious users to cause a denial of service or possibly execute arbitrary code via vectors involving num_to_read.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
debian debian linux 8.0 |
||
westes flex |