It was discovered that the apr_fnmatch function used an unconstrained recursion when processing patterns with the '*' wildcard. An attacker could use this flaw to cause an application using this function, which also accepted untrusted input as a pattern for matching , to exhaust all stack memory or use an excessive amount of CPU time when performing matching . Packages for 2009.0 are provided as of the Extended Maintenance Program