Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Sat, 26 Mar 2016 08:25:55 +0100
From: Salvatore Bonaccorso <>
To: OSS Security Mailinglist <>
Cc: CVE Assignments MITRE <>
Subject: CVE Request: pcre: Segmentation fault on certain input to regular
 expressions with nested alternatives when JIT is used


In Debian the following issue was reported (test case contained)

On certain input when processed for regular expressions with nested
alternatives and JIT is used, pcre3 can segfault, affecting in this
case suricata leading to at least a denial of service.

The problem was addressed upstream with commit:

Can you assign a CVE for this issue?


Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ