https://bugs.exim.org/show_bug.cgi?id=1991
Bug ID: 1991 Summary: PCRE2 10.23-RC1 - Stack overflow in internal_dfa_match() Product: PCRE Version: N/A Hardware: x86 OS: Linux Status: NEW Severity: bug Priority: medium Component: Code Assignee: p...@hermes.cam.ac.uk Reporter: fumfi....@gmail.com CC: pcre-dev@exim.org Created attachment 955 --> https://bugs.exim.org/attachment.cgi?id=955&action=edit POC to trigger stack overflow (pcre2test) Affected: - PCRE2 version 10.23-RC1 2016-08-01 (SVN revision: 610) To reproduce the problem (pcre2test): pcre2test pcre2_so_internal_dfa_match /dev/null ASAN output: ==19045==ERROR: AddressSanitizer: stack-overflow on address 0x7ffeb5444dc4 (pc 0x7f54ff2766db bp 0x7ffeb54450f0 sp 0x7ffeb5444ca0 T0) #0 0x7f54ff2766da in internal_dfa_match XYZ/pcre/src/pcre2_dfa_match.c:375 #1 0x7f54ff285d94 in internal_dfa_match XYZ/pcre/src/pcre2_dfa_match.c:2750:14 #2 0x7f54ff285d94 in internal_dfa_match XYZ/pcre/src/pcre2_dfa_match.c:2750:14 #3 0x7f54ff285d94 in internal_dfa_match XYZ/pcre/src/pcre2_dfa_match.c:2750:14 #4 0x7f54ff285d94 in internal_dfa_match XYZ/pcre/src/pcre2_dfa_match.c:2750:14 #5 0x7f54ff285d94 in internal_dfa_match XYZ/pcre/src/pcre2_dfa_match.c:2750:14 #6 0x7f54ff285d94 in internal_dfa_match XYZ/pcre/src/pcre2_dfa_match.c:2750:14 #7 0x7f54ff285d94 in internal_dfa_match XYZ/pcre/src/pcre2_dfa_match.c:2750:14 #8 0x7f54ff285d94 in internal_dfa_match XYZ/pcre/src/pcre2_dfa_match.c:2750:14 #9 0x7f54ff285d94 in internal_dfa_match XYZ/pcre/src/pcre2_dfa_match.c:2750:14 ############################################################################## #216 0x7f54ff285d94 in internal_dfa_match XYZ/pcre/src/pcre2_dfa_match.c:2750:14 #217 0x7f54ff2757cf in pcre2_dfa_match_8 XYZ/pcre/src/pcre2_dfa_match.c:3563:8 #218 0x4ef5f7 in process_data XYZ/pcre/src/pcre2test.c:6561:7 #219 0x4ef5f7 in main XYZ/pcre/src/pcre2test.c:7788 #220 0x7f54fe12f82f in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x2082f) #221 0x41aad8 in _start (/usr/local/bin/pcre2test+0x41aad8) SUMMARY: AddressSanitizer: stack-overflow XYZ/pcre/src/pcre2_dfa_match.c:375 in internal_dfa_match ==19045==ABORTING Regards, Kamil Frankowicz -- You are receiving this mail because: You are on the CC list for the bug. -- ## List details at https://lists.exim.org/mailman/listinfo/pcre-dev