Heap-based buffer overflow in pcre_compile.c in the Perl-Compatible Regular
Expression (PCRE) library 7.7 allows context-dependent attackers to cause a
denial of service (crash) or possibly execute arbitrary code via a regular
expression that begins with an option and contains multiple branches.
jdstrand> kees did pcre3 update
jdstrand> php5 on dapper and feisty is not vulnerable
jdstrand> jdstrand sponsored erlang update for karmic and lucid
Updated: 2016-03-23 03:31:26 UTC (commit 10817)