libyara/re.c in the regexp module in YARA 3.5.0 allows remote attackers to cause a denial of service (stack consumption) via a crafted rule (involving hex strings) that is mishandled in the _yr_re_emit function, a different vulnerability than CVE-2017-9304.
| Product | Vendor | Version |
|---|---|---|
| n/a | n/a | < 10.0.14393.6252 |