VYPR
Unrated severityNVD Advisory· Published Jul 7, 2008· Updated Jun 16, 2026

CVE-2008-2371

CVE-2008-2371

Description

Heap-based buffer overflow in pcre_compile.c in the Perl-Compatible Regular Expression (PCRE) library 7.7 allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via a regular expression that begins with an option and contains multiple branches.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

12
  • Pcre/Pcre2 versions
    cpe:2.3:a:pcre:pcre:7.7:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:pcre:pcre:7.7:*:*:*:*:*:*:*
    • (no CPE)range: =7.7
  • cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
    Range: >=5.2.0,<=5.2.7
  • cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:7.04:*:*:*:*:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:7.10:*:*:*:*:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:*
  • cpe:2.3:o:debian:debian_linux:4.0:*:*:*:*:*:*:*
  • cpe:2.3:o:fedoraproject:fedora:8:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:fedoraproject:fedora:8:*:*:*:*:*:*:*
    • cpe:2.3:o:fedoraproject:fedora:9:*:*:*:*:*:*:*
  • cpe:2.3:o:opensuse:opensuse:10.3:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

45

News mentions

0

No linked articles in our index yet.