Nixpkgs security tracker

Login with GitHub

⚠️ You are using a production deployment that is still only suitable for demo purposes. Any work done in this might be wiped later without notice.

Suggestions search

All statuses

Filter by:

With package: python313Packages.opencc

Found 1 matching suggestions

View:

Compact

Detailed

Untriaged

Permalink CVE-2025-15536

5.3 MEDIUM

CVSS version: 3.1
Attack vector (AV):
Attack complexity (AC):
Privileges required (PR):
User interaction (UI):
Scope (S):
Confidentiality impact (C):
Integrity impact (I):
Availability impact (A):

created 3 months ago

BYVoid OpenCC MaxMatchSegmentation.cpp MaxMatchSegmentation heap-based overflow

A weakness has been identified in BYVoid OpenCC up to 1.1.9. This vulnerability affects the function opencc::MaxMatchSegmentation of the file src/MaxMatchSegmentation.cpp. This manipulation causes heap-based buffer overflow. The attack is restricted to local execution. The exploit has been made available to the public and could be used for attacks. Patch name: 345c9a50ab07018f1b4439776bad78a0d40778ec. To fix this issue, it is recommended to deploy a patch.

References

VDB-341708 | BYVoid OpenCC MaxMatchSegmentation.cpp MaxMatchSegmentation heap-based overflow vdb-entrytechnical-description
VDB-341708 | CTI Indicators (IOB, IOC, IOA) signaturepermissions-required
Submit #733347 | BYVoid OpenCC ver.1.1.9 and master-branch Heap-based Buffer Overflow third-party-advisory
https://github.com/BYVoid/OpenCC/issues/997 exploitissue-tracking
https://github.com/BYVoid/OpenCC/pull/1005 issue-tracking
https://github.com/oneafter/1222/blob/main/repro exploit
https://github.com/BYVoid/OpenCC/commit/345c9a50ab07018f1b4439776bad78a0d40778ec patch

Affected products

OpenCC

==1.1.3
==1.1.6
==1.1.0
==1.1.7
==1.1.4
==1.1.1
==1.1.5
==1.1.8
==1.1.9
==1.1.2

Matching in nixpkgs

pkgs.opencc

Project for conversion between Traditional and Simplified Chinese

nixos-unstable 1.1.9
- nixpkgs-unstable 1.1.9
- nixos-unstable-small 1.1.9
nixos-25.11 1.1.9
- nixpkgs-25.11-darwin 1.1.9

pkgs.python312Packages.opencc

Python bindings for OpenCC (Conversion between Traditional and Simplified Chinese)

nixos-25.11 1.1.9
- nixpkgs-25.11-darwin 1.1.9

pkgs.python313Packages.opencc

Python bindings for OpenCC (Conversion between Traditional and Simplified Chinese)

nixos-25.11 1.1.9
- nixpkgs-25.11-darwin 1.1.9

Package maintainers

@sifmelcara Ming Chuan <ming@culpring.com>
@siraben Siraphob Phipathananunth <bensiraphob@gmail.com>

1