[pcre-dev] [Bug 2765] pcretest.c in PCRE 8.44 allows remote …

Top Page

Reply to this message
Author: admin
Date:  
To: pcre-dev
Subject: [pcre-dev] [Bug 2765] pcretest.c in PCRE 8.44 allows remote attackers to cause a denial of service (heap-based buffer overflow)
https://bugs.exim.org/show_bug.cgi?id=2765

Philip Hazel <Philip.Hazel@???> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
         Resolution|---                         |WONTFIX
             Status|NEW                         |RESOLVED


--- Comment #5 from Philip Hazel <Philip.Hazel@???> ---
This bug is not reproducible in PCRE2. It does look as if it is a bug in DFA
matching in PCRE1, but as I could not immediately see what is going on, and not
wanting to spend a long time tracing it all through, I have not fixed this in
the final PCRE1 release that has just come out (where only very trivial issues
were addressed, the main reason for the release being to document that it is
final).

--
You are receiving this mail because:
You are on the CC list for the bug.