Upstream information
Description
libyara/re.c in the regexp module in YARA 3.5.0 allows remote attackers to cause a denial of service (stack consumption) via a crafted rule (involving hex strings) that is mishandled in the _yr_re_emit function, a different vulnerability than CVE-2017-9304.SUSE information
Overall state of this security issue: Does not affect SUSE products
This issue is currently not rated by SUSE as it is not affecting the SUSE Enterprise products.
SUSE Bugzilla entry: 1042825 [RESOLVED / WONTFIX] No SUSE Security Announcements cross referenced.SUSE Timeline for this CVE
CVE page created: Mon Jun 5 22:20:12 2017CVE page last modified: Mon Sep 9 15:28:35 2024