CVE-2017-16231 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2017-16231 Interim 1 14 2025-10-05T02:10:12Z current 2021-05-30T14:03:58Z 2025-10-05T02:10:12Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2017-16231 In PCRE 8.41, after compiling, a pcretest load test PoC produces a crash overflow in the function match() in pcre_exec.c because of a self-recursive call. NOTE: third parties dispute the relevance of this report, noting that there are options that can be used to limit the amount of stack that is used The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Server 12 SP4-LTSS libpcre1 libpcre1-32bit libpcre16-0 libpcrecpp0 libpcreposix0 pcre pcre-devel libpcre1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS libpcre1-32bit as a component of SUSE Linux Enterprise Server 12 SP4-LTSS libpcre16-0 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS libpcrecpp0 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS libpcreposix0 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS pcre-devel as a component of SUSE Linux Enterprise Server 12 SP4-LTSS pcre as a component of SUSE Linux Enterprise Server 12 SP4-LTSS In PCRE 8.41, after compiling, a pcretest load test PoC produces a crash overflow in the function match() in pcre_exec.c because of a self-recursive call. NOTE: third parties dispute the relevance of this report, noting that there are options that can be used to limit the amount of stack that is used CVE-2017-16231 low 2.1 AV:L/AC:L/Au:N/C:N/I:N/A:P 4.3 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L