๐ CVE-2015-8381 | PCRE up to 8.37 pcre_compile.c compile_regex Regex Pattern memory corruption (RHSA-2016:1132 / BID-76187)
๐ก Newskategorie: Sicherheitslรผcken
๐ Quelle: vuldb.com
A vulnerability was found in PCRE up to 8.37. It has been classified as very critical. This affects the function compile_regex
of the file pcre_compile.c. The manipulation with the input /(?J:(?|(:(?|(?'R')(\k'R')|((?'R')))H'Rk'Rf)|s(?'R'))))/
as part of Regex Pattern leads to memory corruption.
This vulnerability is uniquely identified as CVE-2015-8381. It is possible to initiate the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component. ...