Описание
ELSA-2016-1025: pcre security update (IMPORTANT)
[8.32-15.1]
- Fix CVE-2015-2328 (infinite recursion compiling pattern with recursive reference in a group with indefinite repeat) (bug #1330508)
- Fix CVE-2015-8385 (buffer overflow caused by named forward reference to duplicate group number) (bug #1330508)
- Fix CVE-2015-8386 (buffer overflow caused by lookbehind assertion) (bug #1330508)
- Fix CVE-2015-3217 (stack overflow caused by mishandled group empty match) (bug #1330508)
- Fix CVE-2015-5073 and CVE-2015-8388 (buffer overflow for forward reference within backward assertion with excess closing parenthesis) (bug #1330508)
- Fix CVE-2015-8391 (inefficient posix character class syntax check) (bug #1330508)
- Fix CVE-2016-3191 (workspace overflow for (*ACCEPT) with deeply nested parentheses) (bug #1330508)
Обновленные пакеты
Oracle Linux 7
Oracle Linux x86_64
pcre
8.32-15.el7_2.1
pcre-devel
8.32-15.el7_2.1
pcre-static
8.32-15.el7_2.1
pcre-tools
8.32-15.el7_2.1
