Package: pcre3 Followup-For: Bug #324531 Patch extracted from difference between upstream versions 6.0 and 6.1, modified to patch version 4.5. Patch is attached.
Regards, Sven -- System Information: Debian Release: 3.1 APT prefers experimental APT policy: (400, 'experimental'), (90, 'testing'), (50, 'unstable') Architecture: i386 (i686) Kernel: Linux 2.6.11.12-incase Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
--- pcre.c 2003-12-10 17:45:44.000000000 +0100 +++ ../pcre.c 2005-08-22 19:49:14.673426894 +0200 @@ -4755,6 +4755,7 @@ options = (options | set) & (~unset); set = unset = 0; /* To save length */ item_count--; /* To allow for several */ + length +=2; /* avoid CAN-2005-2491 */ } /* Fall through */