CVE-2017-16231

Name of the Vulnerable Software and Affected Versions PCRE version 8.41

Description The issue is related to a crash overflow in the function match() in pcre exec.c due to a self-recursive call. This occurs after compiling and running a pcretest load test proof of concept. It's worth noting that third parties have disputed the relevance of this report, suggesting that options are available to limit the amount of stack used, potentially mitigating the issue.

Recommendations For PCRE version 8.41, consider using options that limit the amount of stack used to mitigate the risk of a crash overflow. At the moment, there is no information about a newer version that contains a fix for this vulnerability.