re2c before 2.0 has uncontrolled recursion that causes stack consumption in find_fixed_tags.
CVSS Score
5.5
EPSS Score
0.0
Published
2020-04-29
re2c 1.3 has a heap-based buffer overflow in Scanner::fill in parse/scanner.cc via a long lexeme.
CVSS Score
7.8
EPSS Score
0.004
Published
2020-04-21