Launchpad.net

CVE 2020-11958

re2c 1.3 has a heap-based buffer overflow in Scanner::fill in parse/scanner.cc via a long lexeme.

See the CVE page on Mitre.org for more details.