develooper Front page | perl.perl5.porters | Postings from August 2018

[perl #130909] AddressSanitizer: heap-buffer-overflow InPerl_pp_padsv

Tony Cook via RT
August 21, 2018 01:18
[perl #130909] AddressSanitizer: heap-buffer-overflow InPerl_pp_padsv
Message ID:
On Mon, 06 Mar 2017 09:57:26 -0800, davem wrote:
> I haven't looked more closely yet at how to fix it. I doubt that is a
> security issue though, since it involves the rare use of the empty pattern
> against a code-block-containing regex. An attacker is unlikely to find
> existing perl code that is exploitable and that doesn't already badly
> crash (and so would never have made it into production in the first
> place).

Now public.


via perlbug:  queue: perl5 status: open Perl Programming lists via nntp and http.
Comments to Ask Bjørn Hansen at | Group listing | About