13 matches found
Linux Distros Unpatched Vulnerability : CVE-2015-2328
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - PCRE before 8.36 mishandles the /?Ra|?1+/ pattern and related patterns with certain recursion, which allows remote attackers to cause a denial of service...
Arbitrary Code Execution
PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The rh-php56 packages provide a recent stable release of PHP with PEAR 1.9.5 and enhanced language features including constant expressions, variadic functions, arguments unpacking, and the interactive debuger. T...
Security Bulletin:Multiple vulnerabilities in PCRE affect IBM Tivoli Network Manager IP Edition
Summary Multiple vulnerabilities exist in PCRE v5.x, shipped with IBM Tivoli Network Manager IP Edition. Therefore PCRE 8.35 has been upgraded in IBM Tivoli Network Manager IP Edition. Vulnerability Details CVE-ID: CVE-2015-2327 Description: PCRE is vulnerable to a denial of service, caused by th...
Security Bulletin: Multiple vulnerabilities in PCRE library affect IBM Tealeaf Customer Experience
Summary Multiple PCRE vulnerabilities were disclosed on November 28, 2015; March 23, 2016; and June 8, 2016. PCRE is used by IBM Tealeaf Customer Experience. IBM Tealeaf Customer Experience has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2014-9769 DESCRIPTION: PCRE is vulnerab...
RedHat Update for pcre RHSA-2016:1025-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CentOS Update for pcre CESA-2016:1025 centos7
Check the version of pcre SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882492";...
Scientific Linux Security Update : pcre on SL7.x x86_64 (20160511)
Security Fixes : - Multiple flaws were found in the way PCRE handled malformed regular expressions. An attacker able to make an application using PCRE process a specially crafted regular expression could use these flaws to cause the application to crash or, possibly, execute arbitrary code...
Oracle Linux 7 : pcre (ELSA-2016-1025)
The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2016-1025 advisory. - Fix CVE-2015-2328 infinite recursion compiling pattern with recursive reference in a group with indefinite repeat bug 1330508 - Fix CVE-2015-8385...
Important: Red Hat Security Advisory: pcre security update
An update for pcre is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...
Ubuntu: Security Advisory (USN-2943-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2015-2328
PCRE before 8.36 mishandles the /?Ra|?1+/ pattern and related patterns with certain recursion, which allows remote attackers to cause a denial of service segmentation fault or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object...
CVE-2015-2328
CVE-2015-2328 affects PCRE, where PCRE before 8.36 mishandles the /((?(R)a|(?1)))+/ and related recursive patterns. This can enable a remote attacker to trigger a denial of service (segmentation fault) or other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object...
CVE-2015-2328
PCRE before 8.36 mishandles the /?Ra|?1+/ pattern and related patterns with certain recursion, which allows remote attackers to cause a denial of service segmentation fault or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object...