CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2020-24240
https://notcve.org/view.php?id=CVE-2020-24240
GNU Bison before 3.7.1 has a use-after-free in _obstack_free in lib/obstack.c (called from gram_lex) when a '\0' byte is encountered. NOTE: there is a risk only if Bison is used with untrusted input, and the observed bug happens to cause unsafe behavior with a specific compiler/architecture. The bug report was intended to show that a crash may occur in Bison itself, not that a crash may occur in code that is generated by Bison. GNU Bison versión 3.7, presenta una vulnerabilidad de uso de la memoria previamente liberada (UAF). Un atacante local puede ejecutar bison con un archivo de entrada diseñado que contiene un byte NULL, lo que podría desencadenar un UAF y, por lo tanto, causar un bloqueo del sistema • https://github.com/akimd/bison/commit/be95a4fe2951374676efc9454ffee8638faaf68d https://github.com/akimd/bison/compare/v3.7...v3.7.1 https://lists.gnu.org/r/bug-bison/2020-07/msg00051.html • CWE-416: Use After Free •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2020-14150
https://notcve.org/view.php?id=CVE-2020-14150
GNU Bison before 3.5.4 allows attackers to cause a denial of service (application crash). NOTE: there is a risk only if Bison is used with untrusted input, and an observed bug happens to cause unsafe behavior with a specific compiler/architecture. The bug reports were intended to show that a crash may occur in Bison itself, not that a crash may occur in code that is generated by Bison. GNU Bison en versiones anteriores a la 3.5.4 permite a los atacantes causar una denegación de servicio (bloqueo de la aplicación). NOTA: hay un riesgo sólo si Bison se usa con una entrada no confiable, y un error observado resulta causar un comportamiento inseguro con un compilador/arquitectura específico. • https://bugs.gentoo.org/717936 https://lists.gnu.org/archive/html/info-gnu/2020-04/msg00000.html •