← Back to CVE List

CVE-2017-6004

Published: 2017-02-16T11:59Z
Last Modified: 2024-11-21T03:28Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
The compile_bracket_matchingpath function in pcre_jit_compile.c in PCRE through 8.x before revision 1680 (e.g., the PHP 7.1.1 bundled version) allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted regular expression. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt