Attachment 259901 Details for Bug 384761 – Patch agains pcre 6.4 provided by Ludwig Nussel of SUSE

[patch] Patch agains pcre 6.4 provided by Ludwig Nussel of SUSE

pcre-6.4-ver6.7issue18.diff (text/plain), 1.07 KB, created by Tomas Hoger on 2007-11-15 15:16:21 UTC

(hide)

Description:

Filename:

MIME Type:

Creator: Tomas Hoger

Created: 2007-11-15 15:16:21 UTC

Size: 1.07 KB

patch

obsolete

>18. A valid (though odd) pattern that looked like a POSIX character
>    class but used an invalid character after [ (for example [[,abc,]]) caused
>    pcre_compile() to give the error "Failed: internal error: code overflow" or
>    in some cases to crash with a glibc free() error. This could even happen if
>    the pattern terminated after [[ but there just happened to be a sequence of
>    letters, a binary zero, and a closing ] in the memory that followed.
>Index: pcre-6.4/pcre_compile.c
>===================================================================
>--- pcre-6.4.orig/pcre_compile.c
>+++ pcre-6.4/pcre_compile.c
>@@ -4239,7 +4239,9 @@ while ((c = *(++ptr)) != 0)
>       /* Check the syntax for POSIX stuff. The bits we actually handle are
>       checked during the real compile phase. */
> 
>-      else if (*ptr == '[' && check_posix_syntax(ptr, &ptr, &compile_block))
>+      else if (*ptr == '[' &&
>+		(ptr[1] == ':' || ptr[1] == '.' || ptr[1] == '=') &&
>+		check_posix_syntax(ptr, &ptr, &compile_block))
>         {
>         ptr++;
>         class_optcount = 10;    /* Make sure > 1 */

Actions: View | Diff

Attachments on bug 384761: 259901