Open ikedas opened 1 year ago
Version: 1.06
Confirmed with Perl 5.16.3 & 5.32.1
This is a test script test.pl:
test.pl
use HTML::StripScripts::Parser; my $hss = HTML::StripScripts::Parser->new; $hss->parse_file(shift); print $hss->filtered_document;
With attached test data, it crashes as below:
$ perl test.pl test-1.html.txt Complex regular subexpression recursion limit (32766) exceeded at /usr/share/perl5/vendor_perl/HTML/StripScripts.pm line 1602.
$ perl test.pl test-2.html.txt Complex regular subexpression recursion limit (32766) exceeded at /usr/share/perl5/vendor_perl/HTML/StripScripts.pm line 1606.
test-1.html.txt test-2.html.txt
CVE-2023-24038 was assigned.
Version: 1.06
Confirmed with Perl 5.16.3 & 5.32.1
This is a test script
test.pl
:With attached test data, it crashes as below:
test-1.html.txt test-2.html.txt