VDB

MAGEIA-2018-49

MAGEIA-2018-49 PUBLISHED

Jakub Wilk reported a heap buffer overflow flaw in the regular expression compiler, allowing a remote attacker to cause a denial of service via a specially crafted regular expression with the case-insensitive modifier (CVE-2017-12837). Jakub Wilk reported a buffer over-read flaw in the regular expression parser, allowing a remote attacker to cause a denial of service or information leak (CVE-2017-12883).

Affected Products

VendorProductVersions
Mageiauserdrake0, 2.17-1.1.mga6
Mageialibuser0, 0.62-8.2.mga6
Mageiaperl5.22.3-3.1.mga6, 0, 5.22.3-3.1.mga6

Timeline

  • Jan 3, 2018 CVE Updated
  • Jan 3, 2018 CVE Published
  • Mar 17, 2026 Distribution Patch
  • Mar 17, 2026 Security Advisory
Open in Interactive Console →
$ Console Community · 100/wk Open console ›