CVE-2017-11164

Name of the Vulnerable Software and Affected Versions PCRE version 8.41

Description The issue allows stack exhaustion due to uncontrolled recursion when processing a crafted regular expression, specifically through the OP KETRMAX feature in the match function in pcre exec.c.

Recommendations For PCRE version 8.41, consider disabling the OP KETRMAX feature as a temporary workaround until a patch is available. Restrict the use of crafted regular expressions to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.