On Sun, Jan 18, 2009 at 3:39 AM, Markus Wanner <mar...@bluegap.ch> wrote: > I'd like to lower the required PCRE version as much as possible, since > Fedora 9 ships with PCRE 7.3 and RHEL 5 date back to PCRE 6.6. The unit > tests run through fine on FC9 with 7.3. I didin't test earlier PCRE > versions, though. I remember there's a '%R' syntax change in 7.6. Can > one install newer RPMs for fedora and RHEL easily? Shall we bother with > older pcre versions?
I'd prefer not to drop the minimum version below the most recent point at which an exploitable crasher bug was fixed, which (according to pcre's NEWS file) was 7.6. There probably isn't an attack vector with our usage but I can't prove it so I'd rather be safe. (Can you find out if FC9 backported those fixes?) zw _______________________________________________ Monotone-devel mailing list Monotone-devel@nongnu.org http://lists.nongnu.org/mailman/listinfo/monotone-devel