Splunk Enterprise 9.3.0 < 9.3.12, 9.4.0 < 9.4.11, 10.0.0 < 10.0.6, 10.2 < 10.2.3 (SVD-2026-0505)

The version of Splunk installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the SVD-2026-0505 advisory. - Expr is an expression language and expression evaluation for Go. Prior to version 1.17.7, several builtin functions in Expr,...

ROOT-APP-GOBINARY-CVE-2025-29786 CVE-2025-29786 in rootio-github.com/expr-lang/expr - Patched by Root

Root has patched CVE-2025-29786 in the rootio-github.com/expr-lang/expr package for Root:Go. Multiple fixed versions available...

Denial Of Service (DoS)

github.com/expr-lang/expr is vulnerable to denial of service DoS. The vulnerability is due to missing recursion depth limits in certain builtin functions, which allows an attacker to supply deeply nested or cyclic data structures and trigger infinite recursion leading to stack overflow and...

MiracleLinux 7 : pcre-8.32-15.el7.1 (AXSA:2016-391:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2016-391:01 advisory. Perl-compatible regular expression library. PCRE has its own native API, but a set of wrapper functions that are based on the POSIX API are also...

Important: amazon-cloudwatch-agent

Issue Overview: SSH Agent servers do not validate the size of messages when processing new identity requests, which may cause the program to panic if the message is malformed due to an out of bounds read. CVE-2025-47914 SSH servers parsing GSSAPI authentication requests do not validate the number...

CVE-2025-68156

A flaw was found in Expr, an expression language and expression evaluation for Go. This vulnerability allows a denial of service DoS via recursive traversal over user-provided deeply nested or cyclic data structures without enforcing a maximum recursion depth, leading to a stack overflow panic an...

[SECURITY] Fedora 43 Update: rust-regex-1.12.2-1.fc43

An implementation of regular expressions for Rust. This implementation uses finite automata and guarantees linear time matching on all inputs...

DEBIAN-CVE-2025-58050

The PCRE2 library is a set of C functions that implement regular expression pattern matching. In version 10.45, a heap-buffer-overflow read vulnerability exists in the PCRE2 regular expression matching engine, specifically within the handling of the scs:... Scan SubString verb when combined with...

SUSE CVE-2005-4872

Perl-Compatible Regular Expression PCRE library before 6.2 does not properly count the number of named capturing subpatterns, which allows context-dependent attackers to cause a denial of service crash via a regular expression with a large number of named subpatterns, which triggers a buffer...

SUSE CVE-2017-8399

PCRE2 before 10.30 has an out-of-bounds write caused by a stack-based buffer overflow in pcre2match.c, related to a "pattern with very many captures."...

USN-5627-2: PCRE vulnerabilities

USN-5627-1 fixed several vulnerabilities in PCRE. This update provides the corresponding fixes for Ubuntu 18.04 ESM. Original advisory details: It was discovered that PCRE incorrectly handled memory when handling certain regular expressions. An attacker could possibly use this issue to cause...

GHSA-V4RH-8P82-6H5W Regular expression denial of service in url-regex

all versions of url-regex are vulnerable to Regular Expression Denial of Service. An attacker providing a very long string in String.test can cause a Denial of Service...

OPENSUSE-SU-2018:0359-1 Security update for chromium

This update for chromium to version 64.0.3282.140 fixes the following security issues: - CVE-2018-6406: Various asan fixes boo1078463, boo1079021 The regular expression library re2 was updated to 2018-02-01...

OPENSUSE-SU-2018:0360-1 Security update for chromium

This update for chromium to version 64.0.3282.140 fixes the following security issues: - CVE-2018-6406: Various asan fixes boo1078463, boo1079021 The regular expression library re2 was updated to 2018-02-01...

PCRE2 Buffer Overflow Vulnerability (CNVD-2017-06216)

PCRE2 is an API for modifying PCRE Open Source Regular Expression Library developed by software developer Philip Hazel. A heap buffer overflow vulnerability exists in the pcre2test.c file in PCRE2 version 10.23. A remote attacker could exploit this vulnerability to cause a denial of service with...

PCRE2 Buffer Overflow Vulnerability (CNVD-2017-07003)

PCRE2 is an API for modifying PCRE Open Source Regular Expression Library developed by software developer Philip Hazel. A buffer overflow vulnerability exists in the pcre2match.c file in versions of PCRE2 prior to 2017-03-10. An attacker can exploit this vulnerability to cause a denial of service...

UBUNTU-CVE-2015-8395

PCRE before 8.38 mishandles certain references, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror, a related issue to CVE-2015-8384 and...

Moderate: Red Hat Bug Fix Advisory: pcre bug fix update

Updated pcre packages that fix several bugs are now available for Red Hat Enterprise Linux 7. PCRE is a Perl-compatible regular expression library. This update fixes the following bugs: Previously, non-matched groups within capturing groups up to a forced match were not being properly reset by...

[SECURITY] Fedora 22 Update: pcre-8.37-4.fc22

Perl-compatible regular expression library. PCRE has its own native API, but a set of "wrapper" functions that are base d on the POSIX API are also supplied in the library libpcreposix. Note that this just provides a POSIX calling interface to PCRE: the regular expressions themselves still follow...

[USN-2694-1] PCRE vulnerabilities

========================================================================== Ubuntu Security Notice USN-2694-1 July 29, 2015 pcre3 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubun...