[pcre-dev] [Bug 1638] PCRE Library Call Stack Overflow Vulne…

Page principale
Ce message fait partie du fil suivant :
M+++\Arborescence complète du fil triée par date
MMMMMadmin à <-
admin à ->
Supprimer ce message
Auteur: admin
Date:  
À: pcre-dev
Sujet: [pcre-dev] [Bug 1638] PCRE Library Call Stack Overflow Vulnerability in match()
https://bugs.exim.org/show_bug.cgi?id=1638

Zoltan Herczeg <hzmester@???> changed: 

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |hzmester@???


--- Comment #1 from Zoltan Herczeg <hzmester@???> ---
The PCRE interpreter uses stack for recursion, and the machine stack can be
exhausted with well crafted patterns (those awful left recursive
(?BracketIndex) recursions...). The general solution is correctly setting
match_limit_recursion. PHP should _really_ do this.

However, this particular pattern revealed a bug in the zero length recursion
detector:

re> /^(?:(?(1)x|)+)+$()/B
------------------------------------------------------------------
  0  33 Bra
  3     ^
  4  17 Bra
  7   8 SCond
 10   1 Cond ref
 13     x
 15   3 Alt
 18  11 KetRmax
 21  17 KetRmax
 24     $
 25   5 CBra 1
 30   5 Ket
 33  33 Ket
 36     End
------------------------------------------------------------------


The second Bra (after 4 17) should be SBra.

Anyway, the serious problem is not setting the match_limit_recursion correctly.

--
You are receiving this mail because:
You are on the CC list for the bug.
Ce message a été envoyé sur les listes de diffusion suivantes :
Pcre-dev
Informations sur la liste de diffusion | Messages voisins		<-[pcre-dev] [Bug 1638] New: PCRE Library Call Stack Overflow Vulnerability in match()[pcre-dev] \l issue->
Tahini and Hummus and Cumin Development Archives administré par cumin AdminsLurker (version 2.3)