Added credit for finding a bug.

2015-07-16 16:15:52 +00:00 · 2015-07-16 16:15:52 +00:00 · 5700a2382f
parent 3326a72f6d
commit 5700a2382f
1 changed files with 3 additions and 2 deletions
--- a/5
+++ b/5
@ -22,8 +22,9 @@ an opening parenthesis.
 /((?x)(*:0))#(?'/. Specifically: if a setting of (?x) was followed by a (*MARK) 
 setting (which (*:0) is), then (?x) did not get unset at the end of its group 
 during the scan for named groups, and hence the external # was incorrectly
-treated as a comment and the invalid (?' at the end of the pattern was not 
-diagnosed. This caused a buffer overflow during the real compile.
+treated as a comment and the invalid (?' at the end of the pattern was not
+diagnosed. This caused a buffer overflow during the real compile. This bug was
+discovered by Karl Skomski with the LLVM fuzzer.

 7. Moved the pcre2_find_bracket() function from src/pcre2_compile.c into its 
 own source module to avoid a circular dependency between src/pcre2_compile.c