Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2017-7244

Опубликовано: 23 мар. 2017
Источник: debian

Описание

The _pcre32_xclass function in pcre_xclass.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (invalid memory read) via a crafted file.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
pcre3fixed2:8.39-3package
pcre3no-dsajessiepackage
pcre3not-affectedwheezypackage

Примечания

  • https://bugs.exim.org/show_bug.cgi?id=2054

  • https://blogs.gentoo.org/ago/2017/03/20/libpcre-invalid-memory-read-in-_pcre32_xclass-pcre_xclass-c/

  • pcre32 support enabled only in pcre3/1:8.35-4

  • Bisected and the following change addresses the issue for pcre3:

  • http://vcs.pcre.org/pcre?view=revision&revision=1688 (8.41)

Связанные уязвимости

ubuntu логотип

CVE-2017-7244

CVSS3: 5.5
ubuntu
почти 9 лет назад

The _pcre32_xclass function in pcre_xclass.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (invalid memory read) via a crafted file.

redhat логотип

CVE-2017-7244

CVSS3: 3.7
redhat
почти 9 лет назад

The _pcre32_xclass function in pcre_xclass.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (invalid memory read) via a crafted file.

nvd логотип

CVE-2017-7244

CVSS3: 5.5
nvd
почти 9 лет назад

The _pcre32_xclass function in pcre_xclass.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (invalid memory read) via a crafted file.

github логотип

GHSA-2j3f-972q-6fv5

CVSS3: 5.5
github
больше 3 лет назад

The _pcre32_xclass function in pcre_xclass.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (invalid memory read) via a crafted file.

suse-cvrf логотип

SUSE-SU-2021:3652-1

suse-cvrf
около 4 лет назад

Security update for pcre