Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The compile_bracket_matchingpath function in pcre_jit_compile.c in PCRE through 8.x before revision 1680 (e.g., the PHP 7.1.1 bundled version) allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted regular expression.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
PCRE 安全漏洞
Vulnerability Description
PCRE(Perl Compatible Regular Expressions)是软件开发者Philip Hazel所研发的一个使用C语言编写的开源正则表达式函数库。 PCRE 8.38版本中的pcre_jit_compile.c文件的‘compile_bracket_matchingpath’函数存在安全漏洞。远程攻击者可借助正则表达式利用该漏洞造成拒绝服务(越边界读取和应用程序崩溃)。
CVSS Information
N/A
Vulnerability Type
N/A