CVE-2006-7226

Published: 03 December 2007

Perl-Compatible Regular Expression (PCRE) library before 6.7 does not properly calculate the compiled memory allocation for regular expressions that involve a quantified "subpattern containing a named recursion or subroutine reference," which allows context-dependent attackers to cause a denial of service (error or crash).

Priority

Low

Status

Package Release Status
pcre3
Launchpad, Ubuntu, Debian
Upstream
Released (6.7)