In the GNU C Library (aka glibc or libc6) prior to 2.28, parse_reg_exp in posix/regcomp.c misparses alternatives, which allows malicious users to cause a denial of service (assertion failure and application exit) or trigger an incorrect result by attempting a regular-expression match.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
wago pfc200_firmware 03.00.39\\(12\\) |
||
wago pfc200_firmware 03.01.07\\(13\\) |
||
wago pfc200_firmware 03.02.02\\(14\\) |