{"id":"CVE-2019-16161","details":"Onigmo through 6.2.0 has a NULL pointer dereference in onig_error_code_to_str because of fetch_token in regparse.c.","modified":"2026-04-10T04:15:25.727027Z","published":"2019-09-09T17:15:13.173Z","references":[{"type":"FIX","url":"https://github.com/k-takata/Onigmo/commit/9827d5a0298ee766f6041db9c0080166ff6cdce8"},{"type":"EVIDENCE","url":"https://github.com/k-takata/Onigmo/issues/132"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/k-takata/onigmo","events":[{"introduced":"0"},{"last_affected":"84388ae86ba511429aeda3894c74ad9681c2d33a"},{"fixed":"9827d5a0298ee766f6041db9c0080166ff6cdce8"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"6.2.0"}]}}],"versions":["Onigmo-5.10.0","Onigmo-5.10.1","Onigmo-5.10.2","Onigmo-5.10.3","Onigmo-5.10.4","Onigmo-5.10.5","Onigmo-5.10.6","Onigmo-5.11.0","Onigmo-5.11.1","Onigmo-5.11.2","Onigmo-5.11.3","Onigmo-5.11.4","Onigmo-5.12.0","Onigmo-5.12.1","Onigmo-5.13.0","Onigmo-5.13.1","Onigmo-5.13.2","Onigmo-5.13.3","Onigmo-5.13.4","Onigmo-5.13.5","Onigmo-5.14.0","Onigmo-5.14.1","Onigmo-5.14.2","Onigmo-5.15.0","Onigmo-5.15.0_for_bregonig","Onigmo-6.0.0","Onigmo-6.0.0_for_bregonig","Onigmo-6.1.0","Onigmo-6.1.0_for_bregonig","Onigmo-6.1.1","Onigmo-6.1.1_for_bregonig","Onigmo-6.1.2","Onigmo-6.1.2_for_bregonig","Onigmo-6.1.3","Onigmo-6.2.0","Onigmo-6.2.0_for_bregonig","Oniguruma-5.9.2"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-16161.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}