Denial of Service Vulnerability in Boost Regex Library
CVE-2008-0171

Currently unrated

Key Information:

Vendor: Boost
Status: Boost; Boost Regex Library
Vendor: CVE Published:; 17 January 2008

What is CVE-2008-0171?

The Boost.Regex library, specifically versions 1.33 and 1.34, contains a vulnerability where context-dependent attackers can exploit an invalid regular expression. This may lead to a denial of service, causing the application to experience a failed assertion and crash. It's crucial for users of these versions to apply the necessary security updates to mitigate the risk associated with this vulnerability.

References

http://wiki.rpath.com/Advisories:rPSA-2008-0063

x_refsource_CONFIRM

http://secunia.com/advisories/48099

third-party-advisoryx_refsource_SECUNIA

http://www.vupen.com/english/advisories/2008/0249

vdb-entryx_refsource_VUPEN

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 17, 2008
Vulnerability Reserved
Jan 9, 2008

CVE-2008-0171 Data

JSON