VDB

GCVE-110-MAGEIA-2016-191

GCVE-110-MAGEIA-2016-191
Advisory Published
Vulnetix · Advisory published May 20, 2016
The regex engine got into an infinite loop because of the malformation. It is trying to back-up over a sequence of UTF-8 continuation bytes. The character just before the sequence should be a start byte. If it's not, there is a malformation which results in "hang" of regexp matching and CPU exhaustion (CVE-2015-8853).

Affected Products

VendorProductVersionsPlatforms
Mageiaperl0 (affected), 5.20.1-8.3.mga5 (unaffected)

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›