Описание
ELSA-2007-1059: Important: pcre security update (IMPORTANT)
[6.6-2.7]
- Fix the names of the patches added in 6.6-2.5: mv pcre-6.4-posix.diff pcre-6.6-CVE-2006-7225.patch mv pcre-6.4-fix1.patch pcre-6.6-CVE-2006-7226.patch
- Update pcre-6.6-CVE-2007-1659.patch
- Update pcre-6.6-CVE-2007-1660.patch
- Add pcre-6.6-CVE-2006-7230.patch
- Resolves: #380531
Обновленные пакеты
Oracle Linux 5
Oracle Linux ia64
pcre
6.6-2.el5_1.7
pcre-devel
6.6-2.el5_1.7
Oracle Linux x86_64
pcre
6.6-2.el5_1.7
pcre-devel
6.6-2.el5_1.7
Oracle Linux i386
pcre
6.6-2.el5_1.7
pcre-devel
6.6-2.el5_1.7
Связанные CVE
Связанные уязвимости
Perl-Compatible Regular Expression (PCRE) library before 7.0 does not properly calculate the amount of memory needed for a compiled regular expression pattern when the (1) -x or (2) -i UTF-8 options change within the pattern, which allows context-dependent attackers to cause a denial of service (PCRE or glibc crash) via crafted regular expressions.
Perl-Compatible Regular Expression (PCRE) library before 7.0 does not properly calculate the amount of memory needed for a compiled regular expression pattern when the (1) -x or (2) -i UTF-8 options change within the pattern, which allows context-dependent attackers to cause a denial of service (PCRE or glibc crash) via crafted regular expressions.
Perl-Compatible Regular Expression (PCRE) library before 7.0 does not properly calculate the amount of memory needed for a compiled regular expression pattern when the (1) -x or (2) -i UTF-8 options change within the pattern, which allows context-dependent attackers to cause a denial of service (PCRE or glibc crash) via crafted regular expressions.
Perl-Compatible Regular Expression (PCRE) library before 7.0 does not ...
Уязвимости операционной системы SUSE Linux Enterprise, позволяющие злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации