The regex code in Webkit 2.4.11 allows remote attackers to cause a denial of service (memory consumption) as demonstrated in a large number of ($ (open parenthesis and dollar) followed by {-2,16} and a large number of +) (plus close parenthesis).
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2017-03-07T16:00:00
Updated: 2024-08-06T02:59:03.313Z
Reserved: 2016-11-26T00:00:00
Link: CVE-2016-9643
Vulnrichment
No data.
NVD
Status : Modified
Published: 2017-03-07T16:59:01.650
Modified: 2017-07-12T01:29:03.487
Link: CVE-2016-9643
Redhat
No data.