PHP Integer Overflow or Wraparound Vulnerability - CVE-2015-8387

PCRE before 8.38 mishandles (123) subroutine calls and related subroutine calls which allows remote attackers to cause a denial of service (integer overflow) or possibly have unspecified other impact via a crafted regular expression as demonstrated by a JavaScript RegExp object encountered by Konqueror.