Lucene search
K

63 matches found

Veracode
Veracode
added 2022/01/13 7:51 a.m.12 views

Regular Expression Denial Of Service (ReDoS)

h2o is vulnerable to regular expression denial of service. The use of inefficient regular expression allows an attacker to provide a malicious input string, causing extreme use of regex engine and crashing the application...

4.3AI score
Exploits0
Veracode
Veracode
added 2021/09/06 5:20 a.m.24 views

Regular Expression Denial Of Service (ReDoS)

pillow is vulnerable to regular expression denial of service. The getrgb function accepts user-provided very long color specifier, exhausting regex engine due to excessive CPU consumption and resulting in a Denial of Service...

7.5CVSS4.1AI score0.03154EPSS
Exploits1References6Affected Software1
RedHat Linux
RedHat Linux
added 2021/04/20 12:59 p.m.9 views

perl: heap-based buffer overflow in regular expression compiler leads to DoS

Perl before 5.30.3 on 32-bit platforms allows a heap-based buffer overflow because nested regular expression quantifiers have an integer overflow...

8.2CVSS7.2AI score0.11334EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/03/30 9:44 a.m.5 views

perl: corruption of intermediate language state of compiled regular expression due to recursive S_study_chunk() calls leads to DoS

regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted regular expression because of recursive Sstudychunk calls...

7.5CVSS7.1AI score0.05971EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2020/10/05 12:0 a.m.42 views

Cisco IOS Software Split DNS DoS (cisco-sa-splitdns-SPWqpdGW)

According to its self-reported version, Cisco IOS Software is affected by a denial of service DoS vulnerability as the Split DNS feature's regular expression regex engine may time out when processing the DNS name list configuration. An unauthenticated, remote attacker could cause an affected devi...

8.6CVSS7.9AI score0.01555EPSS
Exploits0References4
OSV
OSV
added 2019/02/26 2:29 a.m.3 views

DEBIAN-CVE-2018-20796

In the GNU C Library aka glibc or libc6 through 2.29, checkdstlimitscalcpos1 in posix/regexec.c has Uncontrolled Recursion, as demonstrated by '\227|\1\1|t1|\\2537+' in grep...

7.5CVSS7AI score0.05804EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2018/04/23 6:51 a.m.4 views

perl: heap read overflow in regexec.c

A heap buffer over read flaw was found in the way Perl regular expression engine handled inputs with invalid UTF-8 characters. An attacker able to provide a specially crafted input to be matched against a regular expression could cause Perl interpreter to crash or disclose portion of its memory...

7.5CVSS7.4AI score0.04005EPSS
Exploits0References5
OSV
OSV
added 2017/07/11 3:29 a.m.3 views

ALPINE-CVE-2017-11164

In PCRE 8.41, the OPKETRMAX feature in the match function in pcreexec.c allows stack exhaustion uncontrolled recursion when processing a crafted regular expression...

7.5CVSS6.9AI score0.03102EPSS
Exploits0References1
OSV
OSV
added 2017/07/11 3:29 a.m.5 views

DEBIAN-CVE-2017-11164

In PCRE 8.41, the OPKETRMAX feature in the match function in pcreexec.c allows stack exhaustion uncontrolled recursion when processing a crafted regular expression...

7.5CVSS6.9AI score0.03102EPSS
Exploits0References1
OSV
OSV
added 2017/06/16 3:29 p.m.3 views

DEBIAN-CVE-2017-9728

In uClibc 0.9.33.2, there is an out-of-bounds read in the getsubexp function in misc/regex/regexec.c when processing a crafted regular expression...

9.8CVSS6.8AI score0.01232EPSS
Exploits0References1
OSV
OSV
added 2017/02/16 11:59 a.m.4 views

DEBIAN-CVE-2017-6004

The compilebracketmatchingpath function in pcrejitcompile.c in PCRE through 8.x before revision 1680 e.g., the PHP 7.1.1 bundled version allows remote attackers to cause a denial of service out-of-bounds read and application crash via a crafted regular expression...

7.5CVSS7.5AI score0.04546EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2016/11/15 11:40 a.m.13 views

pcre: heap buffer over-read in pcre_compile2() (8.37/23)

The pcrecompile2 function in PCRE before 8.37 allows context-dependent attackers to compile incorrect code and cause a denial of service out-of-bounds read via regular expression with a group containing both a forward referencing subroutine call and a recursive back reference, as demonstrated by...

5.5CVSS7AI score0.01592EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2016/05/26 8:35 a.m.6 views

pcre: heap buffer overflow in handling of duplicate named groups (8.39/14)

The pcrecompile2 function in pcrecompile.c in PCRE 8.38 mishandles the /?:F?+?:^?Ra+"99-?J?'R'?'R'?'RR'?'R'\97?J?J?'R'?'R'\99|:?|?'R'\k'R'|?'R'H'R'RH'R/ pattern and related patterns with named subgroups, which allows remote attackers to cause a denial of service heap-based buffer overflow or...

9.8CVSS7.6AI score0.07791EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2016/05/26 8:35 a.m.11 views

pcre: workspace overflow for (*ACCEPT) with deeply nested parentheses (8.39/13, 10.22/12)

The compilebranch function in pcrecompile.c in PCRE 8.x before 8.39 and pcre2compile.c in PCRE2 before 10.22 mishandles patterns containing an ACCEPT substring in conjunction with nested parentheses, which allows remote attackers to execute arbitrary code or cause a denial of service stack-based...

9.8CVSS7.7AI score0.0843EPSS
Exploits1References4
Mageia
Mageia
added 2016/05/20 11:38 a.m.36 views

Updated perl packages fix security vulnerability

The regex engine got into an infinite loop because of the malformation. It is trying to back-up over a sequence of UTF-8 continuation bytes. The character just before the sequence should be a start byte. If it's not, there is a malformation which results in "hang" of regexp matching and CPU...

7.5CVSS7.6AI score0.02553EPSS
Exploits0References2
OSV
OSV
added 2016/05/20 11:38 a.m.13 views

MGASA-2016-0191 Updated perl packages fix security vulnerability

The regex engine got into an infinite loop because of the malformation. It is trying to back-up over a sequence of UTF-8 continuation bytes. The character just before the sequence should be a start byte. If it's not, there is a malformation which results in "hang" of regexp matching and CPU...

7.5CVSS7.5AI score0.02553EPSS
Exploits0References3
exploitpack
exploitpack
added 2015/09/22 12:0 a.m.14 views

Apple Mac OSX Regex Engine (TRE) - Integer Signedness Overflow

Apple Mac OSX Regex Engine TRE - Integer Signedness Overflow Source: https://code.google.com/p/google-security-research/issues/detail?id=429 The OS X regex engine function tretnfarunparallel contains the following code: int tbytes; ... if !matchtags numtags = 0; else numtags = tnfa-numtags; ... i...

Exploits0
0day.today
0day.today
added 2015/09/22 12:0 a.m.96 views

OS X Regex Engine (TRE) - Stack Buffer Overflow Vulnerability

Exploit for macOS platform in category dos / poc Source: https://code.google.com/p/google-security-research/issues/detail?id=428 OS X Libc uses the slightly obscure TRE regex engine http://laurikari.net/tre/ If used in enhanced mode by passing the REGENHANCED flag to regcomp TRE supports...

7.5CVSS0.12416EPSS
Exploits1
exploitpack
exploitpack
added 2015/09/22 12:0 a.m.26 views

Apple Mac OSX Regex Engine (TRE) - Stack Buffer Overflow (PoC)

Apple Mac OSX Regex Engine TRE - Stack Buffer Overflow PoC Source: https://code.google.com/p/google-security-research/issues/detail?id=428 OS X Libc uses the slightly obscure TRE regex engine http://laurikari.net/tre/ If used in enhanced mode by passing the REGENHANCED flag to regcomp TRE support...

0.2AI score
Exploits0
0day.today
0day.today
added 2015/09/22 12:0 a.m.40 views

OS X Regex Engine (TRE) - Integer Signedness and Overflow Issues Vulnerability

Exploit for macOS platform in category dos / poc Source: https://code.google.com/p/google-security-research/issues/detail?id=429 The OS X regex engine function tretnfarunparallel contains the following code: int tbytes; ... if !matchtags numtags = 0; else numtags = tnfa-numtags; ... int rbytes,...

7.5CVSS7.7AI score0.13322EPSS
Exploits1
Rows per page
Query Builder