A vulnerability was found in irregex which is bundled as a part of chicken. Parsing a maliciously crafted regular expression could cause resource exhaustion resulting in a Denial of Service.
Created chicken tracking bugs for this issue:
Affects: fedora-all [bug 1413993]
Affects: epel-all [bug 1413994]
This has been fixed for a while.