Back to search
CVE-2007-1661
Published: Nov 7, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Perl-Compatible Regular Expression (PCRE) library before 7.3 backtracks too far when matching certain input bytes against some regex patterns in non-UTF-8 mode, which allows context-dependent attackers to obtain sensitive information or cause a denial of service (crash), as demonstrated by the "\X?\d" and "\P{L}?\d" patterns.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
30219
third-party-advisory
x_refsource_SECUNIA
29267
third-party-advisory
x_refsource_SECUNIA
USN-547-1
vendor-advisory
x_refsource_UBUNTU
GLSA-200711-30
vendor-advisory
x_refsource_GENTOO
ADV-2007-4238
vdb-entry
x_refsource_VUPEN
20071106 rPSA-2007-0231-1 pcre
mailing-list
x_refsource_BUGTRAQ
TA07-352A
third-party-advisory
x_refsource_CERT
27538
third-party-advisory
x_refsource_SECUNIA
20071112 FLEA-2007-0064-1 pcre
mailing-list
x_refsource_BUGTRAQ
28136
third-party-advisory
x_refsource_SECUNIA
DSA-1570
vendor-advisory
x_refsource_DEBIAN
https://issues.rpath.com/browse/RPL-1738
x_refsource_CONFIRM
27773
third-party-advisory
x_refsource_SECUNIA
27697
third-party-advisory
x_refsource_SECUNIA
28406
third-party-advisory
x_refsource_SECUNIA
27554
third-party-advisory
x_refsource_SECUNIA
ADV-2008-0924
vdb-entry
x_refsource_VUPEN
pcre-nonutf8-dos(38274)
vdb-entry
x_refsource_XF
27543
third-party-advisory
x_refsource_SECUNIA
[gtk-devel-list] 20071107 GLib 2.14.3
mailing-list
x_refsource_MLIST
29420
third-party-advisory
x_refsource_SECUNIA
APPLE-SA-2007-12-17
vendor-advisory
x_refsource_APPLE
GLSA-200805-11
vendor-advisory
x_refsource_GENTOO
APPLE-SA-2008-03-18
vendor-advisory
x_refsource_APPLE
MDKSA-2007:211
vendor-advisory
x_refsource_MANDRIVA
FEDORA-2008-1842
vendor-advisory
x_refsource_FEDORA
http://docs.info.apple.com/article.html?artnum=307179
x_refsource_CONFIRM
27741
third-party-advisory
x_refsource_SECUNIA
ADV-2007-3790
vdb-entry
x_refsource_VUPEN
ADV-2007-3725
vdb-entry
x_refsource_VUPEN
SUSE-SA:2007:062
vendor-advisory
x_refsource_SUSE
http://www.pcre.org/changelog.txt
x_refsource_CONFIRM
http://docs.info.apple.com/article.html?artnum=307562
x_refsource_CONFIRM
30155
third-party-advisory
x_refsource_SECUNIA
28720
third-party-advisory
x_refsource_SECUNIA
GLSA-200801-02
vendor-advisory
x_refsource_GENTOO
http://bugs.gentoo.org/show_bug.cgi?id=198976
x_refsource_MISC
GLSA-200801-19
vendor-advisory
x_refsource_GENTOO
GLSA-200801-18
vendor-advisory
x_refsource_GENTOO
DSA-1399
vendor-advisory
x_refsource_DEBIAN
28414
third-party-advisory
x_refsource_SECUNIA
26346
vdb-entry
x_refsource_BID
30106
third-party-advisory
x_refsource_SECUNIA
28714
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now