Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2007-1661HistoryNov 07, 2007 - 11:46 p.m.
CVE-2007-1661
2007-11-0723:46:00
Debian Security Bug Tracker
security-tracker.debian.org
14
6.4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:N/A:P
0.028 Low
EPSS
Percentile
90.7%
Perl-Compatible Regular Expression (PCRE) library before 7.3 backtracks too far when matching certain input bytes against some regex patterns in non-UTF-8 mode, which allows context-dependent attackers to obtain sensitive information or cause a denial of service (crash), as demonstrated by the “\X?\d” and “\P{L}?\d” patterns.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | glib2.0 | < 2.14.3-1 | glib2.0_2.14.3-1_all.deb |
| Debian | 11 | all | glib2.0 | < 2.14.3-1 | glib2.0_2.14.3-1_all.deb |
| Debian | 10 | all | glib2.0 | < 2.14.3-1 | glib2.0_2.14.3-1_all.deb |
| Debian | 999 | all | glib2.0 | < 2.14.3-1 | glib2.0_2.14.3-1_all.deb |
| Debian | 13 | all | glib2.0 | < 2.14.3-1 | glib2.0_2.14.3-1_all.deb |
| Debian | 12 | all | pcre3 | < 7.3-1 | pcre3_7.3-1_all.deb |
| Debian | 11 | all | pcre3 | < 7.3-1 | pcre3_7.3-1_all.deb |
| Debian | 10 | all | pcre3 | < 7.3-1 | pcre3_7.3-1_all.deb |
| Debian | 999 | all | pcre3 | < 7.3-1 | pcre3_7.3-1_all.deb |
| Debian | 13 | all | pcre3 | < 7.3-1 | pcre3_7.3-1_all.deb |
Related
ubuntucve
ubuntucve
CVE-2007-1661
2007-11-07 00:00:00
cve
cve
CVE-2007-1661
2007-11-07 23:46:00
prion
prion
Code injection
2007-11-07 23:46:00
cvelist
cvelist
CVE-2007-1661
2007-11-07 20:00:00
nvd
nvd
CVE-2007-1661
2007-11-07 23:46:00
nessus
nessus
openSUSE 10 Security Update : pcre (pcre-4683)
2007-11-20 00:00:00
Ubuntu 6.06 LTS / 6.10 / 7.04 / 7.10 : pcre3 vulnerabilities (USN-547-1)
2007-11-29 00:00:00
Fedora 7 : pcre-7.3-3.fc7 (2008-1842)
2008-03-07 00:00:00
openvas
openvas
Mandriva Update for pcre MDKSA-2007:211 (pcre)
2009-04-09 00:00:00
Fedora Update for pcre FEDORA-2008-1842
2009-02-16 00:00:00
Debian: Security Advisory (DSA-1399-1)
2008-01-17 00:00:00
osv
osv
pcre3 - arbitrary code execution
2007-11-05 00:00:00
freebsd
freebsd
pcre -- arbitrary code execution
2007-11-05 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 1399-1] New pcre3 packages fix arbitrary code execution
2007-11-07 00:00:00
PCRE and perl regular expression handling multiple security vulnerabilities
2007-11-07 00:00:00
ubuntu
ubuntu
PCRE vulnerabilities
2007-11-27 00:00:00
fedora
fedora
[SECURITY] Fedora 7 Update: pcre-7.3-3.fc7
2008-03-06 16:37:25
debian
debian
[SECURITY] [DSA 1399-1] New pcre3 packages fix arbitrary code execution
2007-11-05 20:22:19
suse
suse
remote code execution in pcre
2007-11-23 15:35:33
gentoo
gentoo
PCRE: Multiple vulnerabilities
2007-11-20 00:00:00
6.4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:N/A:P
0.028 Low
EPSS
Percentile
90.7%
Related for DEBIANCVE:CVE-2007-1661