Lucene search
K

25 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2015-5073

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap-based buffer overflow in the findfixedlength function in pcrecompile.c in PCRE before 8.38 allows remote attackers to cause a denial of service crash or...

9.1CVSS8.1AI score0.07673EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/04/24 12:0 a.m.43 views

RHEL 6 / 7 : rh-mariadb100-mariadb (RHSA-2016:1132)

The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2016:1132 advisory. MariaDB is a multi-user, multi-threaded SQL database server. For all practical purposes, MariaDB is binary-compatible with MySQL. MariaD...

9.8CVSS7.8AI score0.30146EPSS
Exploits12References119
Amazon
Amazon
added 2023/06/08 12:0 a.m.44 views

Medium: pcre

Issue Overview: Heap-based buffer overflow in the findfixedlength function in pcrecompile.c in PCRE before 8.38 allows remote attackers to cause a denial of service crash or obtain sensitive information from heap memory and possibly bypass the ASLR protection mechanism via a crafted regular...

9.8CVSS9.6AI score0.07673EPSS
Exploits1
F5 Networks
F5 Networks
added 2023/02/21 6:33 p.m.27 views

K17331: PCRE library vulnerability CVE-2015-5073

Security Advisory Description Heap-based buffer overflow in the findfixedlength function in pcrecompile.c in PCRE before 8.38 allows remote attackers to cause a denial of service crash or obtain sensitive information from heap memory and possibly bypass the ASLR protection mechanism via a crafted...

9.1CVSS8.8AI score0.07673EPSS
Exploits1Affected Software22
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.11 views

Mageia: Security Advisory (MGASA-2015-0343)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2020/06/17 12:0 a.m.53 views

EulerOS 2.0 SP2 : glib2 (EulerOS-SA-2020-1654)

According to the versions of the glib2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - PCRE 7.8 and 8.32 through 8.37, and PCRE2 10.10 mishandle group empty matches, which might allow remote attackers to cause a denial of service...

9.8CVSS7.2AI score0.07673EPSS
Exploits2References5
OpenVAS
OpenVAS
added 2020/06/16 12:0 a.m.43 views

Huawei EulerOS: Security Advisory for glib2 (EulerOS-SA-2020-1654)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8AI score0.07673EPSS
Exploits2References2
Veracode
Veracode
added 2019/05/02 6:2 a.m.57 views

Arbitrary Code Execution

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The rh-php56 packages provide a recent stable release of PHP with PEAR 1.9.5 and enhanced language features including constant expressions, variadic functions, arguments unpacking, and the interactive debuger. T...

9.8CVSS9AI score0.36974EPSS
Exploits78References15Affected Software3
OpenVAS
OpenVAS
added 2017/03/07 12:0 a.m.53 views

F5 BIG-IP - PCRE library vulnerability CVE-2015-5073

Heap-based buffer overflow in the findfixedlength function in pcrecompile.c in PCRE before 8.38 allows remote attackers to cause a denial of service crash or obtain sensitive information from heap memory and possibly bypass the ASLR protection mechanism via a crafted regular expression with an...

9.1CVSS8.4AI score0.74EPSS
Exploits8References1
Tenable Nessus
Tenable Nessus
added 2016/12/16 12:0 a.m.72 views

SUSE SLED12 / SLES12 Security Update : pcre (SUSE-SU-2016:3161-1)

This update for pcre to version 8.39 bsc972127 fixes several issues. If you use pcre extensively please be aware that this is an update to a new version. Please make sure that your software works with the updated version. This version fixes a number of vulnerabilities that affect pcre and...

9.8CVSS7.8AI score0.09157EPSS
Exploits11References64
NVD
NVD
added 2016/12/13 4:59 p.m.14 views

CVE-2015-5073

Heap-based buffer overflow in the findfixedlength function in pcrecompile.c in PCRE before 8.38 allows remote attackers to cause a denial of service crash or obtain sensitive information from heap memory and possibly bypass the ASLR protection mechanism via a crafted regular expression with an...

9.1CVSS9.6AI score0.07673EPSS
Exploits1References13
Debian CVE
Debian CVE
added 2016/12/13 4:0 p.m.27 views

CVE-2015-5073

Heap-based buffer overflow in the findfixedlength function in pcrecompile.c in PCRE before 8.38 allows remote attackers to cause a denial of service crash or obtain sensitive information from heap memory and possibly bypass the ASLR protection mechanism via a crafted regular expression with an...

9.1CVSS10AI score0.07673EPSS
Exploits1
CVE
CVE
added 2016/12/13 4:0 p.m.172 views

CVE-2015-5073

The CVE-2015-5073 issue affects PCRE (pcre_compile.c: find_fixedlength) before version 8.38, causing a heap-based buffer overflow that can crash a program or reveal heap data and may bypass ASLR when processing a crafted regular expression (closing parenthesis). The vulnerability is documented ac...

9.1CVSS7.6AI score0.07673EPSS
Exploits1References13Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/07/11 12:0 a.m.45 views

GLSA-201607-02 : libpcre: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201607-02 libpcre: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in libpcre. Please review the CVE identifiers referenced below for details. Impact : An attacker can possibly execute arbitrary code or crea...

9.8CVSS7.6AI score0.07791EPSS
Exploits4References19
OpenVAS
OpenVAS
added 2016/06/03 12:0 a.m.58 views

RedHat Update for pcre RHSA-2016:1025-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.8AI score0.0843EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2016/05/17 12:0 a.m.55 views

CentOS Update for pcre CESA-2016:1025 centos7

Check the version of pcre SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882492";...

9.8CVSS8.2AI score0.0843EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2016/05/12 12:0 a.m.32 views

Scientific Linux Security Update : pcre on SL7.x x86_64 (20160511)

Security Fixes : - Multiple flaws were found in the way PCRE handled malformed regular expressions. An attacker able to make an application using PCRE process a specially crafted regular expression could use these flaws to cause the application to crash or, possibly, execute arbitrary code...

9.8CVSS8.1AI score0.0843EPSS
Exploits4References9
Tenable Nessus
Tenable Nessus
added 2016/05/12 12:0 a.m.45 views

Oracle Linux 7 : pcre (ELSA-2016-1025)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2016-1025 advisory. - Fix CVE-2015-2328 infinite recursion compiling pattern with recursive reference in a group with indefinite repeat bug 1330508 - Fix CVE-2015-8385...

9.8CVSS8.2AI score0.0843EPSS
Exploits4References9
OpenVAS
OpenVAS
added 2016/04/11 12:0 a.m.41 views

Ubuntu: Security Advisory (USN-2943-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.1AI score0.09157EPSS
Exploits11References2
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.40 views

Fedora 23 : mingw-pcre-8.38-1.fc23 (2016-fd1199dbe2)

Update to 8.38 and fix various CVE's Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 703...

9.8CVSS7.9AI score0.09157EPSS
Exploits2References34
Rows per page
Query Builder