Описание
Perl-Compatible Regular Expression (PCRE) library before 6.7 allows context-dependent attackers to cause a denial of service (error or crash) via a regular expression that involves a "malformed POSIX character class", as demonstrated via an invalid character after a [[ sequence.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 7.4-0ubuntu0.6.06.1 |
| devel | not-affected | |
| edgy | released | 7.4-0ubuntu0.6.10.1 |
| feisty | not-affected | |
| gutsy | not-affected | |
| upstream | released | 6.7 |
Показывать по
Ссылки на источники
EPSS
4.3 Medium
CVSS2
Связанные уязвимости
Perl-Compatible Regular Expression (PCRE) library before 6.7 allows context-dependent attackers to cause a denial of service (error or crash) via a regular expression that involves a "malformed POSIX character class", as demonstrated via an invalid character after a [[ sequence.
Perl-Compatible Regular Expression (PCRE) library before 6.7 allows context-dependent attackers to cause a denial of service (error or crash) via a regular expression that involves a "malformed POSIX character class", as demonstrated via an invalid character after a [[ sequence.
Perl-Compatible Regular Expression (PCRE) library before 6.7 allows co ...
Perl-Compatible Regular Expression (PCRE) library before 6.7 allows context-dependent attackers to cause a denial of service (error or crash) via a regular expression that involves a "malformed POSIX character class", as demonstrated via an invalid character after a [[ sequence.
ELSA-2007-1059: Important: pcre security update (IMPORTANT)
EPSS
4.3 Medium
CVSS2