21 matches found
MariaDB 10.0.0 < 10.0.18 Multiple Vulnerabilities
The version of MariaDB installed on the remote host is prior to 10.0.18. It is, therefore, affected by multiple vulnerabilities as referenced in the 10.0.18 advisory. - The compilebranch function in PCRE before 8.37 allows context-dependent attackers to compile incorrect code, cause a denial of...
MongoDB 2.6.x < 2.6.9, 3.0.x < 3.0.14, 3.2.x < 3.2.8 mongod
The version of the remote MongoDB server is 2.6.x prior to 2.6.9, is 3.0.x 3.0.14 or is 3.2.x 3.2.8. It is, therefore, affected by multiple vulnerabilities. - A credentials disclosure vulnerability exists in the PEMKeyPassword, clusterPassword and Windows servicePassword. An unauthenticated local...
SUSE SLED12 / SLES12 Security Update : pcre (SUSE-SU-2016:3161-1)
This update for pcre to version 8.39 bsc972127 fixes several issues. If you use pcre extensively please be aware that this is an update to a new version. Please make sure that your software works with the updated version. This version fixes a number of vulnerabilities that affect pcre and...
GLSA-201607-02 : libpcre: Multiple Vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201607-02 libpcre: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in libpcre. Please review the CVE identifiers referenced below for details. Impact : An attacker can possibly execute arbitrary code or crea...
Oracle: Security Advisory (ELSA-2015-0330)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[USN-2694-1] PCRE vulnerabilities
========================================================================== Ubuntu Security Notice USN-2694-1 July 29, 2015 pcre3 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubun...
SUSE-SU-2015:1273-1 Security update for mariadb
This update fixes the following security issues: Logjam attack: mysql uses 512 bit dh groups in SSL bnc934789 CVE-2015-3152: mysql --ssl does not enforce SSL bnc924663 CVE-2014-8964: heap buffer overflow bnc906574 CVE-2015-2325: heap buffer overflow in compilebranch bnc924960 CVE-2015-2326: heap...
mariadb: denial of service
CVE-2014-8964 denial of service A heap-based buffer overflow was found in the way PCRE handled certain malformed regular expressions. This issue could cause a crash while parsing malicious regular expressions related to an assertion that allows zero repeats. - CVE-2015-0499 denial of service...
CentOS 7 : pcre (CESA-2015:0330)
Updated pcre packages that fix one security issue and add one enhancement are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...
Oracle Linux 7 : pcre (ELSA-2015-0330)
The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2015-0330 advisory. - Fix CVE-2014-8964 unused memory usage on zero-repeat assertion condition bug 1169797 Tenable has extracted the preceding description block directly from the...
Low: Red Hat Security Advisory: pcre security and enhancement update
Updated pcre packages that fix one security issue and add one enhancement are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...
Fedora 19 : mingw-pcre-8.33-4.fc19 (2014-17626)
Fix CVE-2014-8964 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable Networ...
Fedora 21 : mingw-pcre-8.35-1.fc21 (2014-17642)
Update to 8.35 and fix CVE-2014-8964 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 703...
Fedora Update for pcre FEDORA-2014-15573
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 19 : pcre-8.32-12.fc19 (2014-16224)
This release fixes CVE-2014-8964 an unused memory usage on zero-repeat assertion condition Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible...
Fedora 20 : pcre-8.33-8.fc20 (2014-16215)
This release fixes CVE-2014-8964 an unused memory usage on zero-repeat assertion condition Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible...
Fedora Update for pcre FEDORA-2014-16215
Check the version of pcre SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868617";...
Fedora Update for pcre FEDORA-2014-16224
Check the version of pcre SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868620";...
Updated pcre packages fix security vulnerability
A flaw was found in the way PCRE handled certain malformed regular expressions. This issue could cause an application linked against PCRE to crash while parsing malicious regular expressions CVE-2014-8964...
CVE-2014-8964
Heap-based buffer overflow in PCRE 8.36 and earlier allows remote attackers to cause a denial of service crash or have other unspecified impact via a crafted regular expression, related to an assertion that allows zero repeats...