Security Advisories (1)
CVE-2019-20454 (2020-02-14)

An out-of-bounds read was discovered in PCRE before 10.34 when the pattern \X is JIT compiled and used to match specially crafted subjects in non-UTF mode. Applications that use PCRE to parse untrusted input may be vulnerable to this flaw, which would allow an attacker to crash the application. The flaw occurs in do_extuni_no_utf in pcre2_jit_compile.c.

Changes for version 2.0.13 - 2017-05-31

  • Jean-Damien Durand <jeandamiendurand@free.fr>
    • Version 2.0.13 [ci skip]
    • perl/ESLIF.xs: removed unused method and prefer av_len over av_top_index for old perls [ci skip]

Modules

ESLIF is Extended ScanLess InterFace
ESLIF Event Types
ESLIF Logger levels
ESLIF Value Types