Revision: 310
http://www.exim.org/viewvc/pcre2?view=rev&revision=310
Author: ph10
Date: 2015-07-16 17:15:52 +0100 (Thu, 16 Jul 2015)
Log Message:
-----------
Added credit for finding a bug.
Modified Paths:
--------------
code/trunk/ChangeLog
Modified: code/trunk/ChangeLog
===================================================================
--- code/trunk/ChangeLog 2015-07-16 16:11:52 UTC (rev 309)
+++ code/trunk/ChangeLog 2015-07-16 16:15:52 UTC (rev 310)
@@ -22,8 +22,9 @@
/((?x)(*:0))#(?'/. Specifically: if a setting of (?x) was followed by a (*MARK)
setting (which (*:0) is), then (?x) did not get unset at the end of its group
during the scan for named groups, and hence the external # was incorrectly
-treated as a comment and the invalid (?' at the end of the pattern was not
-diagnosed. This caused a buffer overflow during the real compile.
+treated as a comment and the invalid (?' at the end of the pattern was not
+diagnosed. This caused a buffer overflow during the real compile. This bug was
+discovered by Karl Skomski with the LLVM fuzzer.
7. Moved the pcre2_find_bracket() function from src/pcre2_compile.c into its
own source module to avoid a circular dependency between src/pcre2_compile.c
