pcre security update

ID ELSA-2016-1025
Type oraclelinux
Reporter Oracle
Modified 2016-05-11T00:00:00


[8.32-15.1] - Fix CVE-2015-2328 (infinite recursion compiling pattern with recursive reference in a group with indefinite repeat) (bug #1330508) - Fix CVE-2015-8385 (buffer overflow caused by named forward reference to duplicate group number) (bug #1330508) - Fix CVE-2015-8386 (buffer overflow caused by lookbehind assertion) (bug #1330508) - Fix CVE-2015-3217 (stack overflow caused by mishandled group empty match) (bug #1330508) - Fix CVE-2015-5073 and CVE-2015-8388 (buffer overflow for forward reference within backward assertion with excess closing parenthesis) (bug #1330508) - Fix CVE-2015-8391 (inefficient posix character class syntax check) (bug #1330508) - Fix CVE-2016-3191 (workspace overflow for (*ACCEPT) with deeply nested parentheses) (bug #1330508)