The pcre_compile2 function in PCRE before 8.37 allows context-dependent attackers to compile incorrect code and cause a denial of service (out-of-bounds read) via regular expression with a group containing both a forward referencing subroutine call and a recursive back reference, as demonstrated by "((?+1)(\1))/".
{ "ubuntu_priority": "low", "availability": "No subscription required", "binaries": [ { "binary_name": "libpcre3", "binary_version": "1:8.31-2ubuntu2.1" }, { "binary_name": "libpcre3-dbg", "binary_version": "1:8.31-2ubuntu2.1" }, { "binary_name": "libpcre3-dbgsym", "binary_version": "1:8.31-2ubuntu2.1" }, { "binary_name": "libpcre3-dev", "binary_version": "1:8.31-2ubuntu2.1" }, { "binary_name": "libpcre3-dev-dbgsym", "binary_version": "1:8.31-2ubuntu2.1" }, { "binary_name": "libpcre3-udeb", "binary_version": "1:8.31-2ubuntu2.1" }, { "binary_name": "libpcre3-udeb-dbgsym", "binary_version": "1:8.31-2ubuntu2.1" }, { "binary_name": "libpcrecpp0", "binary_version": "1:8.31-2ubuntu2.1" }, { "binary_name": "libpcrecpp0-dbgsym", "binary_version": "1:8.31-2ubuntu2.1" }, { "binary_name": "pcregrep", "binary_version": "1:8.31-2ubuntu2.1" }, { "binary_name": "pcregrep-dbgsym", "binary_version": "1:8.31-2ubuntu2.1" } ] }