{"id":"DEBIAN-CVE-2014-8964","details":"Heap-based buffer overflow in PCRE 8.36 and earlier allows remote attackers to cause a denial of service (crash) or have other unspecified impact via a crafted regular expression, related to an assertion that allows zero repeats.","modified":"2025-11-19T01:01:57.823283Z","published":"2014-12-16T18:59:10.747Z","upstream":["CVE-2014-8964"],"references":[{"type":"ADVISORY","url":"https://security-tracker.debian.org/tracker/CVE-2014-8964"}],"affected":[{"package":{"name":"pcre3","ecosystem":"Debian:11","purl":"pkg:deb/debian/pcre3?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:8.35-3.3"}]}],"ecosystem_specific":{"urgency":"not yet assigned"},"database_specific":{"source":"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2014-8964.json"}},{"package":{"name":"pcre3","ecosystem":"Debian:12","purl":"pkg:deb/debian/pcre3?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:8.35-3.3"}]}],"ecosystem_specific":{"urgency":"not yet assigned"},"database_specific":{"source":"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2014-8964.json"}}],"schema_version":"1.7.3"}