Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Mon, 30 Nov 2015 09:43:25 +0100
From: Tomas Hoger <thoger@...hat.com>
To: cve-assign@...re.org
Cc: oss-security@...ts.openwall.com
Subject: Re: Re: Heap Overflow in PCRE

On Sun, 29 Nov 2015 05:58:01 -0500 (EST) cve-assign@...re.org wrote:

> JavaScript may be "something else" in most cases, e.g.,
> 
>   http://blog.chromium.org/2009/02/irregexp-google-chromes-new-regexp.html
>   https://github.com/v8/v8/tree/master/src/regexp
>   https://hg.mozilla.org/mozilla-central/file/tip/js/src/irregexp

KDE/Konqueror uses pcre for JS regexps.

http://lxr.kde.org/source/kde/kdelibs/kjs/regexp.cpp?v=stable-qt4

-- 
Tomas Hoger / Red Hat Product Security

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ