CVE-2006-7225

2007-12-0320:46:00

Debian Security Bug Tracker

security-tracker.debian.org

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.016 Low

EPSS

Percentile

87.4%

JSON

Perl-Compatible Regular Expression (PCRE) library before 6.7 allows context-dependent attackers to cause a denial of service (error or crash) via a regular expression that involves a “malformed POSIX character class”, as demonstrated via an invalid character after a [[ sequence.

OSVersionArchitecturePackageVersionFilename
Debian12allglib2.0< 2.14.3-1glib2.0_2.14.3-1_all.deb
Debian11allglib2.0< 2.14.3-1glib2.0_2.14.3-1_all.deb
Debian10allglib2.0< 2.14.3-1glib2.0_2.14.3-1_all.deb
Debian999allglib2.0< 2.14.3-1glib2.0_2.14.3-1_all.deb
Debian13allglib2.0< 2.14.3-1glib2.0_2.14.3-1_all.deb
Debian12allpcre3< 6.7-1pcre3_6.7-1_all.deb
Debian11allpcre3< 6.7-1pcre3_6.7-1_all.deb
Debian10allpcre3< 6.7-1pcre3_6.7-1_all.deb
Debian999allpcre3< 6.7-1pcre3_6.7-1_all.deb
Debian13allpcre3< 6.7-1pcre3_6.7-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	glib2.0	< 2.14.3-1	glib2.0_2.14.3-1_all.deb
Debian	11	all	glib2.0	< 2.14.3-1	glib2.0_2.14.3-1_all.deb
Debian	10	all	glib2.0	< 2.14.3-1	glib2.0_2.14.3-1_all.deb
Debian	999	all	glib2.0	< 2.14.3-1	glib2.0_2.14.3-1_all.deb
Debian	13	all	glib2.0	< 2.14.3-1	glib2.0_2.14.3-1_all.deb
Debian	12	all	pcre3	< 6.7-1	pcre3_6.7-1_all.deb
Debian	11	all	pcre3	< 6.7-1	pcre3_6.7-1_all.deb
Debian	10	all	pcre3	< 6.7-1	pcre3_6.7-1_all.deb
Debian	999	all	pcre3	< 6.7-1	pcre3_6.7-1_all.deb
Debian	13	all	pcre3	< 6.7-1	pcre3_6.7-1_all.deb