Red Hat Bugzilla – Bug 392921
CVE-2007-1662: pcre < 7.3 unmatched bracket/paren past EoS read issue
Last modified: 2008-03-06 11:36:57 EST
"Perl-Compatible Regular Expression (PCRE) library before 7.3 reads past the end
of the string when searching for unmatched brackets and parentheses, which
allows context-dependent attackers to cause a denial of service (crash),
possibly involving forward references."
F7 ships pcre 7.0.
pcre-7.3-3.fc7 has been submitted as an update for Fedora 7
pcre-7.3-3.fc7 has been pushed to the Fedora 7 testing repository. If problems still persist, please make note of it in this bug report.
If you want to test the update, you can install it with
su -c 'yum --enablerepo=updates-testing update pcre'. You can provide feedback for this update here: http://admin.fedoraproject.org/updates/F7/FEDORA-2008-1842
pcre-7.3-3.fc7 has been pushed to the Fedora 7 stable repository. If problems still persist, please make note of it in this bug report.