CVE-2008-1026

Impact:
Critical
Public Date:
2008-03-28
CWE:
CWE-190
Bugzilla:
443780: CVE-2008-1026 WebKit: Integer overflow in the PCRE regular expression compiler

The MITRE CVE dictionary describes this issue as:

Integer overflow in the PCRE regular expression compiler (JavaScriptCore/pcre/pcre_compile.cpp) in Apple WebKit, as used in Safari before 3.1.1, allows remote attackers to execute arbitrary code via a regular expression with large, nested repetition counts, which triggers a heap-based buffer overflow.

Find out more about CVE-2008-1026 from the MITRE CVE dictionary dictionary and NIST NVD.

Statement

Not vulnerable. This issue did not affect versions of pcre as shipped with Red Hat Enterprise Linux 2.1, 3, 4, or 5.

Last Modified

CVE description copyright © 2017, The MITRE Corporation

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.