{"id":"CVE-2020-23915","details":"An issue was discovered in cpp-peglib through v0.1.12. peg::resolve_escape_sequence() in peglib.h has a heap-based buffer over-read.","modified":"2026-04-11T09:46:22.075639Z","published":"2021-04-21T18:15:08.270Z","references":[{"type":"REPORT","url":"https://github.com/yhirose/cpp-peglib/issues/122"},{"type":"FIX","url":"https://github.com/yhirose/cpp-peglib/commit/b3b29ce8f3acf3a32733d930105a17d7b0ba347e"},{"type":"ARTICLE","url":"https://cwe.mitre.org/data/definitions/126.html"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/yhirose/cpp-peglib","events":[{"introduced":"0"},{"last_affected":"14305f9f53cde207568f21675a1b9294a3ab28b4"},{"fixed":"b3b29ce8f3acf3a32733d930105a17d7b0ba347e"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"0.1.12"}]}}],"versions":["v0.1.0","v0.1.1","v0.1.10","v0.1.11","v0.1.12","v0.1.2","v0.1.3","v0.1.4","v0.1.5","v0.1.6","v0.1.7","v0.1.8","v0.1.9"],"database_specific":{"vanir_signatures_modified":"2026-04-11T09:46:22Z","vanir_signatures":[{"target":{"function":"codepoint_length","file":"peglib.h"},"id":"CVE-2020-23915-8629b90c","signature_type":"Function","deprecated":false,"digest":{"length":335,"function_hash":"73004964111901588551179169896409950747"},"source":"https://github.com/yhirose/cpp-peglib/commit/b3b29ce8f3acf3a32733d930105a17d7b0ba347e","signature_version":"v1"},{"target":{"file":"peglib.h"},"id":"CVE-2020-23915-988a499c","signature_type":"Line","deprecated":false,"digest":{"line_hashes":["305731826359281247296869654299113449651","339036016034052883856440544981514003458","56011554680543042233893566455295825915","255636933513162664645131821946322598403","57542540629536009684787878544379393432","312831212263277916743638332390265291222","204655458009423361391753162629023155560","37513945751004088926040296577665629182"],"threshold":0.9},"source":"https://github.com/yhirose/cpp-peglib/commit/b3b29ce8f3acf3a32733d930105a17d7b0ba347e","signature_version":"v1"}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-23915.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}]}