pcre: OP_KETRMAX feature in the match function in pcre_exec.c (CVE-2017-11164)
In PCRE 8.41, the OP_KETRMAX feature in the match function in
pcre_exec.c allows stack exhaustion
(uncontrolled recursion) when processing a crafted regular expression.
References:
http://seclists.org/oss-sec/2017/q3/111
http://openwall.com/lists/oss-security/2017/07/11/3
(from redmine: issue id 7700, created on 2017-08-18)
- Relations:
- child #7701 (closed)
- child #7702 (closed)