Description
Integer overflow in the regcomp implementation in the Henry Spencer BSD regex library (aka rxspencer) alpha3.8.g5 on 32-bit platforms, as used in NetBSD through 6.1.5 and other products, might allow context-dependent attackers to execute arbitrary code via a large regular expression that leads to a heap-based buffer overflow.
Remediation
References
Related Vulnerabilities
OpenSSL Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-1473)
TYPO3 Files or Directories Accessible to External Parties Vulnerability (CVE-2021-21355)
WordPress Plugin W3 Total Cache Server-Side Request Forgery (0.9.7.3)
WordPress Plugin WordPress Connect Cross-Site Scripting (2.0.3)
WordPress Plugin Open Graph for Facebook, Google+ and Twitter Card Tags Cross-Site Scripting (2.2.4)