[Secure-testing-team] Bug#796762: pcre3: another heap overflow in compile_regexp()
Salvatore Bonaccorso
carnil at debian.org
Mon Aug 24 04:48:24 UTC 2015
Source: pcre3
Version: 2:8.35-7
Severity: important
Tags: security upstream fixed-upstream
Control: forwarded -1 https://bugs.exim.org/show_bug.cgi?id=1672
Hi
Wen Guanxing reported another heap overflow vulnerability in
compile_regexp(), CVE requested at
http://www.openwall.com/lists/oss-security/2015/08/24/1 .
Upstream bugreport: https://bugs.exim.org/show_bug.cgi?id=1672
Fix: http://vcs.pcre.org/pcre?view=revision&revision=1594
Regards,
Salvatore
More information about the Secure-testing-team
mailing list