Description
The pcre_compile function in pcre_compile.c in PCRE before 8.38 mishandles certain [: nesting, which allows remote attackers to cause a denial of service (CPU consumption) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror.
Remediation
References
Related Vulnerabilities
WordPress Plugin Ultimate Responsive Image Slider Unspecified Vulnerability (3.3.2)
WordPress Plugin WooCommerce Stock Manager Security Bypass (1.0.7)
WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-5489)
GlassFish CVE-2017-3247 Vulnerability (CVE-2017-3247)
Joomla Improper Privilege Management Vulnerability (CVE-2018-17855)