ALPINE-CVE-2017-7246

Source
https://security.alpinelinux.org/vuln/CVE-2017-7246
Import Source
https://storage.googleapis.com/cve-osv-conversion/alpine/ALPINE-CVE-2017-7246.json
JSON Data
https://api.osv.dev/v1/vulns/ALPINE-CVE-2017-7246
Upstream
Published
2017-03-23T21:59:00.223Z
Modified
2026-06-15T18:24:16.819437427Z
Severity
  • 7.8 (High) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

Stack-based buffer overflow in the pcre32copysubstring function in pcre_get.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (WRITE of size 268) or possibly have unspecified other impact via a crafted file.

References

Affected packages

Alpine:v3.6 / pcre

Package

Name
pcre
Purl
pkg:apk/alpine/pcre?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8.41-r0

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/alpine/ALPINE-CVE-2017-7246.json"