Source: re2c Version: 1.3-1 Severity: important Tags: security upstream Hi,
The following vulnerability was published for re2c. CVE-2020-11958[0]: | re2c 1.3 has a heap-based buffer overflow in Scanner::fill in | parse/scanner.cc via a long lexeme. If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2020-11958 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11958 [1] https://github.com/skvadrik/re2c/commit/c4603ba5ce229db83a2a4fb93e6d4b4e3ec3776a Regards, Salvatore
