Vulnerabilities

CVE-2015-2305

by Fred · 30/03/2015

Integer overflow in the regcomp implementation in the Henry Spencer BSD regex library (aka rxspencer) alpha3.8.g5 on 32-bit platforms, as used in NetBSD through 6.1.5 and other products, might allow context-dependent attackers to execute arbitrary code via a large regular expression that leads to a heap-based buffer overflow.

Date published : 2015-03-30

http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html

http://www.securityfocus.com/bid/72611

Similar

Tags: Cybersecurity Alert