Sign In

CVE-2026-2903

ADVISORY - nist

Summary

A flaw has been found in skvadrik re2c up to 4.4. Impacted is the function check_and_merge_special_rules of the file src/parse/ast.cc. This manipulation causes null pointer dereference. The attack can only be executed locally. The exploit has been published and may be used. Patch name: febeb977936f9519a25d9fbd10ff8256358cdb97. It is suggested to install a patch to address this issue.

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-404

Improper Resource Shutdown or Release

CWE-476

NULL Pointer Dereference

Impacted images

Advisories
Sign in to Docker Scout

See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.

Sign in