2 matches found
PCRE 'find_fixedlength()' function heap buffer overflow vulnerability
PCRE is a software developer Philip Hazel developed by the use of C language written in open source regular expression library . PCRE suffers from a heap buffer overflow vulnerability that could be exploited by an attacker to crash an affected application or execute arbitrary code...
UBUNTU-CVE-2015-5073
Heap-based buffer overflow in the findfixedlength function in pcrecompile.c in PCRE before 8.38 allows remote attackers to cause a denial of service crash or obtain sensitive information from heap memory and possibly bypass the ASLR protection mechanism via a crafted regular expression with an...