develooper Front page | perl.perl5.porters | Postings from April 2016

[perl #123562] Regexp-matching "hangs" indefinitely on illegal inputusing binmode :utf8 using 100%CPU

Thread Previous
From:
Dominic Hargreaves via RT
Date:
April 20, 2016 12:05
Subject:
[perl #123562] Regexp-matching "hangs" indefinitely on illegal inputusing binmode :utf8 using 100%CPU
Message ID:
rt-4.0.18-18538-1461153896-1398.123562-15-0@perl.org
This issue is being treated as a security issue by Debian; see

http://www.openwall.com/lists/oss-security/2016/04/20/5

If p5p agrees that this is a correct assessment (it seems so to me) then it should be queued for 5.20.4, I presume?

The Debian bug reporter has rebased the patch for 5.20, but I haven't reviewed that:

https://bugs.debian.org/821848

---
via perlbug:  queue: perl5 status: pending release
https://rt.perl.org/Ticket/Display.html?id=123562

Thread Previous


nntp.perl.org: Perl Programming lists via nntp and http.
Comments to Ask Bjørn Hansen at ask@perl.org | Group listing | About