Описание
Security update for pcre2
This update for pcre2 fixes the following issues:
- CVE-2022-1587: Fixed out-of-bounds read due to bug in recursions (bsc#1199235).
Список пакетов
Image SLES12-SP5-SAP-Azure-LI-BYOS-Production
libpcre2-8-0-10.34-1.10.1
Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production
libpcre2-8-0-10.34-1.10.1
SUSE Linux Enterprise Server 12 SP2-BCL
libpcre2-16-0-10.34-1.10.1
libpcre2-32-0-10.34-1.10.1
libpcre2-8-0-10.34-1.10.1
libpcre2-posix2-10.34-1.10.1
SUSE Linux Enterprise Server 12 SP3-BCL
libpcre2-16-0-10.34-1.10.1
libpcre2-32-0-10.34-1.10.1
libpcre2-8-0-10.34-1.10.1
libpcre2-posix2-10.34-1.10.1
SUSE Linux Enterprise Server 12 SP4-LTSS
libpcre2-16-0-10.34-1.10.1
libpcre2-32-0-10.34-1.10.1
libpcre2-8-0-10.34-1.10.1
libpcre2-posix2-10.34-1.10.1
SUSE Linux Enterprise Server 12 SP5
libpcre2-16-0-10.34-1.10.1
libpcre2-32-0-10.34-1.10.1
libpcre2-8-0-10.34-1.10.1
libpcre2-posix2-10.34-1.10.1
SUSE Linux Enterprise Server for SAP Applications 12 SP4
libpcre2-16-0-10.34-1.10.1
libpcre2-32-0-10.34-1.10.1
libpcre2-8-0-10.34-1.10.1
libpcre2-posix2-10.34-1.10.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5
libpcre2-16-0-10.34-1.10.1
libpcre2-32-0-10.34-1.10.1
libpcre2-8-0-10.34-1.10.1
libpcre2-posix2-10.34-1.10.1
SUSE Linux Enterprise Software Development Kit 12 SP5
pcre2-devel-10.34-1.10.1
pcre2-devel-static-10.34-1.10.1
pcre2-tools-10.34-1.10.1
SUSE OpenStack Cloud 9
libpcre2-16-0-10.34-1.10.1
libpcre2-32-0-10.34-1.10.1
libpcre2-8-0-10.34-1.10.1
libpcre2-posix2-10.34-1.10.1
SUSE OpenStack Cloud Crowbar 9
libpcre2-16-0-10.34-1.10.1
libpcre2-32-0-10.34-1.10.1
libpcre2-8-0-10.34-1.10.1
libpcre2-posix2-10.34-1.10.1
Ссылки
- Link for SUSE-SU-2022:2565-1
- E-Mail link for SUSE-SU-2022:2565-1
- SUSE Security Ratings
- SUSE Bug 1199235
- SUSE CVE CVE-2022-1587 page
Описание
An out-of-bounds read vulnerability was discovered in the PCRE2 library in the get_recurse_data_length() function of the pcre2_jit_compile.c file. This issue affects recursions in JIT-compiled regular expressions caused by duplicate data transfers.
Затронутые продукты
Image SLES12-SP5-SAP-Azure-LI-BYOS-Production:libpcre2-8-0-10.34-1.10.1
Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production:libpcre2-8-0-10.34-1.10.1
SUSE Linux Enterprise Server 12 SP2-BCL:libpcre2-16-0-10.34-1.10.1
SUSE Linux Enterprise Server 12 SP2-BCL:libpcre2-32-0-10.34-1.10.1
Ссылки
- CVE-2022-1587
- SUSE Bug 1199235
- SUSE Bug 1201754
- SUSE Bug 1203032