[Bug 1025670] [NEW] Segfault (.bss overflow) in PCRE
Tim Starling
tstarling at wikimedia.org
Tue Jul 17 13:52:36 UTC 2012
Public bug reported:
A bug in PCRE was fixed upstream. The issue is a segfault with a pattern
like /\x{300000}/ui, e.g.
pcregrep -ui '\x{300000}' < /dev/null
There was no bounds checking on access to some UCD character tables, and
insufficient bounds checking in \x character construction. The fix was
included in a commit that did a lot of other things:
http://vcs.pcre.org/viewvc?view=revision&revision=774
but I have split out the relevant single-line fix for your convenience.
Patch attached.
** Affects: pcre3 (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to pcre3 in Ubuntu.
https://bugs.launchpad.net/bugs/1025670
Title:
Segfault (.bss overflow) in PCRE
Status in “pcre3” package in Ubuntu:
New
Bug description:
A bug in PCRE was fixed upstream. The issue is a segfault with a
pattern like /\x{300000}/ui, e.g.
pcregrep -ui '\x{300000}' < /dev/null
There was no bounds checking on access to some UCD character tables,
and insufficient bounds checking in \x character construction. The fix
was included in a commit that did a lot of other things:
http://vcs.pcre.org/viewvc?view=revision&revision=774
but I have split out the relevant single-line fix for your
convenience. Patch attached.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/pcre3/+bug/1025670/+subscriptions
More information about the foundations-bugs
mailing list