Heap-based buffer overflow in pcre_compile.c in the Perl-Compatible Regular
Expression (PCRE) library 7.7 allows context-dependent attackers to cause a
denial of service (crash) or possibly execute arbitrary code via a regular
expression that begins with an option and contains multiple branches.
jdstrand> kees did pcre3 update
jdstrand> php5 on dapper and feisty is not vulnerable
jdstrand> jdstrand sponsored erlang update for karmic and lucid
Updated: 2015-07-29 20:32:45 UTC (commit 9756)