Security Advisory

CVE-2015-8388

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2015-12-02 01:00:00

Last updated 2024-08-06 08:13:32

Assigner mitre

State PUBLISHED

Description

PCRE before 8.38 mishandles the /(?=di(?<=(?1))|(?=(.))))/ pattern and related patterns with an unmatched closing parenthesis, which allows remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror.

← Browse all CVEs View on cve.org ↗