pcre2test.c in PCRE2 10.23 allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted regular expression.
Created mingw-pcre2 tracking bugs for this issue:
Affects: fedora-26 [bug 1500718]
Created pcre2 tracking bugs for this issue:
Affects: epel-6 [bug 1500719]