[pcre-dev] [Bug 1854] New: Null pointer dereference in pcret…

Top Page
Delete this message
Author: admin
Date:  
To: pcre-dev
Subject: [pcre-dev] [Bug 1854] New: Null pointer dereference in pcretest
https://bugs.exim.org/show_bug.cgi?id=1854

            Bug ID: 1854
           Summary: Null pointer dereference in pcretest
           Product: PCRE
           Version: 8.39
          Hardware: x86
                OS: Linux
            Status: NEW
          Severity: security
          Priority: medium
         Component: Code
          Assignee: ph10@???
          Reporter: bshastry@???
                CC: pcre-dev@???


The pcretest binary segfaults on a null pointer dereference for the attached
inputs (filename start with HARDEN prefix) when invoked like so:
pcretest -q <input_filename> /dev/null

The null dereference occurs due to an integer overflow while parsing digits
contained in the input string/file. I have also attached a tentative patch for
this. Could you please acknowledge this issue? Happy to help.

Thanks,
Bhargava

--
You are receiving this mail because:
You are on the CC list for the bug.