diff options
| author | ph10 <ph10@2f5784b3-3f2a-0410-8824-cb99058d5e15> | 2015-05-15 17:17:03 +0000 |
|---|---|---|
| committer | ph10 <ph10@2f5784b3-3f2a-0410-8824-cb99058d5e15> | 2015-05-15 17:17:03 +0000 |
| commit | 4b79af6b4cbeb5326ae5e4d83f3e935e00286c19 (patch) | |
| tree | 2af0774e6b0a60d89c2495f414fb681954ea39cc /ChangeLog | |
| parent | 67286d4e31be9cdeef981955efbdf6ec9da53f42 (diff) | |
| download | pcre-4b79af6b4cbeb5326ae5e4d83f3e935e00286c19.tar.gz | |
Fix buffer overflow for named recursive back reference when the name is
duplicated.
git-svn-id: svn://vcs.exim.org/pcre/code/trunk@1558 2f5784b3-3f2a-0410-8824-cb99058d5e15
Diffstat (limited to 'ChangeLog')
| -rw-r--r-- | ChangeLog | 4 |
1 files changed, 4 insertions, 0 deletions
@@ -18,6 +18,10 @@ Version 8.38 xx-xxx-xxxx 3. A repeated conditional group whose condition was a reference by name caused a buffer overflow if there was more than one group with the given name. This bug was discovered by the LLVM fuzzer. + +4. A recursive back reference by name within a group that had the same name as + another group caused a buffer overflow. For example: + /(?J)(?'d'(?'d'\g{d}))/. This bug was discovered by the LLVM fuzzer. Version 8.37 28-April-2015 |