Описание
Security update for pcre2
This update for pcre2 fixes the following issues:
- CVE-2022-1586: Fixed out-of-bounds read via missing Unicode property matching issue in JIT compiled regular expressions (bsc#1199232).
Список пакетов
HPE Helion OpenStack 8
libpcre2-16-0-10.34-1.7.1
libpcre2-32-0-10.34-1.7.1
libpcre2-8-0-10.34-1.7.1
libpcre2-posix2-10.34-1.7.1
Image SLES12-SP5-SAP-Azure-LI-BYOS-Production
libpcre2-8-0-10.34-1.7.1
Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production
libpcre2-8-0-10.34-1.7.1
SUSE Linux Enterprise Server 12 SP2-BCL
libpcre2-16-0-10.34-1.7.1
libpcre2-32-0-10.34-1.7.1
libpcre2-8-0-10.34-1.7.1
libpcre2-posix2-10.34-1.7.1
SUSE Linux Enterprise Server 12 SP3-BCL
libpcre2-16-0-10.34-1.7.1
libpcre2-32-0-10.34-1.7.1
libpcre2-8-0-10.34-1.7.1
libpcre2-posix2-10.34-1.7.1
SUSE Linux Enterprise Server 12 SP3-LTSS
libpcre2-16-0-10.34-1.7.1
libpcre2-32-0-10.34-1.7.1
libpcre2-8-0-10.34-1.7.1
libpcre2-posix2-10.34-1.7.1
SUSE Linux Enterprise Server 12 SP4-LTSS
libpcre2-16-0-10.34-1.7.1
libpcre2-32-0-10.34-1.7.1
libpcre2-8-0-10.34-1.7.1
libpcre2-posix2-10.34-1.7.1
SUSE Linux Enterprise Server 12 SP5
libpcre2-16-0-10.34-1.7.1
libpcre2-32-0-10.34-1.7.1
libpcre2-8-0-10.34-1.7.1
libpcre2-posix2-10.34-1.7.1
SUSE Linux Enterprise Server for SAP Applications 12 SP3
libpcre2-16-0-10.34-1.7.1
libpcre2-32-0-10.34-1.7.1
libpcre2-8-0-10.34-1.7.1
libpcre2-posix2-10.34-1.7.1
SUSE Linux Enterprise Server for SAP Applications 12 SP4
libpcre2-16-0-10.34-1.7.1
libpcre2-32-0-10.34-1.7.1
libpcre2-8-0-10.34-1.7.1
libpcre2-posix2-10.34-1.7.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5
libpcre2-16-0-10.34-1.7.1
libpcre2-32-0-10.34-1.7.1
libpcre2-8-0-10.34-1.7.1
libpcre2-posix2-10.34-1.7.1
SUSE Linux Enterprise Software Development Kit 12 SP5
pcre2-devel-10.34-1.7.1
pcre2-devel-static-10.34-1.7.1
pcre2-tools-10.34-1.7.1
SUSE OpenStack Cloud 8
libpcre2-16-0-10.34-1.7.1
libpcre2-32-0-10.34-1.7.1
libpcre2-8-0-10.34-1.7.1
libpcre2-posix2-10.34-1.7.1
SUSE OpenStack Cloud 9
libpcre2-16-0-10.34-1.7.1
libpcre2-32-0-10.34-1.7.1
libpcre2-8-0-10.34-1.7.1
libpcre2-posix2-10.34-1.7.1
SUSE OpenStack Cloud Crowbar 8
libpcre2-16-0-10.34-1.7.1
libpcre2-32-0-10.34-1.7.1
libpcre2-8-0-10.34-1.7.1
libpcre2-posix2-10.34-1.7.1
SUSE OpenStack Cloud Crowbar 9
libpcre2-16-0-10.34-1.7.1
libpcre2-32-0-10.34-1.7.1
libpcre2-8-0-10.34-1.7.1
libpcre2-posix2-10.34-1.7.1
Ссылки
- Link for SUSE-SU-2022:1836-1
- E-Mail link for SUSE-SU-2022:1836-1
- SUSE Security Ratings
- SUSE Bug 1199232
- SUSE CVE CVE-2022-1586 page
Описание
An out-of-bounds read vulnerability was discovered in the PCRE2 library in the compile_xclass_matchingpath() function of the pcre2_jit_compile.c file. This involves a unicode property matching issue in JIT-compiled regular expressions. The issue occurs because the character was not fully read in case-less matching within JIT.
Затронутые продукты
HPE Helion OpenStack 8:libpcre2-16-0-10.34-1.7.1
HPE Helion OpenStack 8:libpcre2-32-0-10.34-1.7.1
HPE Helion OpenStack 8:libpcre2-8-0-10.34-1.7.1
HPE Helion OpenStack 8:libpcre2-posix2-10.34-1.7.1
Ссылки
- CVE-2022-1586
- SUSE Bug 1199232
- SUSE Bug 1203032