Debian Security Advisory 1400-1 - Will Drewry and Tavis Ormandy of the Google Security Team have discovered a UTF-8 related heap overflow in Perl's regular expression compiler, probably allowing attackers to execute arbitrary code by compiling specially crafted regular expressions.
80eac947b733d27ebfc1c73c4f7a80ef09e877c733b15437ae1cd997e69bd4b8