14 matches found
CLSA-2026-1777539510 Update of pcre2
Rebuild for tuxcare9.6esu...
PT-2024-40670 · Pcre2 · Pcre2
Name of the Vulnerable Software and Affected Versions: PCRE2 affected versions not specified Description: A heap buffer overflow read issue has been identified. The crash occurs in the pcre2 fuzzsupport.c file, specifically due to a heap-buffer-overflow read of 4 bytes. Recommendations: At the...
Low: pcre2
Issue Overview: Integer overflow vulnerability in pcre2test before 10.41 allows attackers to cause a denial of service or other unspecified impacts via negative input. CVE-2022-41409 Affected Packages: pcre2 Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ...
Moderate: Red Hat Security Advisory: oniguruma security update
An update for oniguruma is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available fo...
RLSA-2020:4827 Moderate: oniguruma security update
Oniguruma is a regular expressions library that supports a variety of character encodings. Security Fixes: oniguruma: NULL pointer dereference in matchat in regexec.c CVE-2019-13225 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...
oniguruma security update
An update is available for oniguruma. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Oniguruma is a regular expressions library that supports a variety of...
libpcre in PCRE before 8.43 allows a subject buffer over-read in JIT when UTF is disabled and \X or \R has more than one fixed quantifier a related issue to CVE-2019-20454.
...
ALPINE-CVE-2017-16231
In PCRE 8.41, after compiling, a pcretest load test PoC produces a crash overflow in the function match in pcreexec.c because of a self-recursive call. NOTE: third parties dispute the relevance of this report, noting that there are options that can be used to limit the amount of stack that is use...
ALPINE-CVE-2017-7245
Stack-based buffer overflow in the pcre32copysubstring function in pcreget.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service WRITE of size 4 or possibly have unspecified other impact via a crafted file...
DEBIAN-CVE-2017-7246
Stack-based buffer overflow in the pcre32copysubstring function in pcreget.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service WRITE of size 268 or possibly have unspecified other impact via a crafted file...
UBUNTU-CVE-2017-7186
libpcre1 in PCRE 8.40 and libpcre2 in PCRE2 10.23 allow remote attackers to cause a denial of service segmentation violation for read access, and application crash by triggering an invalid Unicode property lookup...
PT-2015-7791 · Php Community +2 · Pcre +2
Name of the Vulnerable Software and Affected Versions: PCRE versions prior to 8.38 Description: The issue concerns how PCRE handles the : and substrings in character classes. This mishandling allows remote attackers to cause a denial of service due to an uninitialized memory read or possibly have...
PCRE 'compile_regex()' function heap buffer overflow vulnerability
PCRE Perl Compatible Regular Expressions is a software developer Philip Hazel developed a use of C language written in open source regular expression library. A heap buffer overflow vulnerability exists in the PCRE 'compileregex' function. This vulnerability could be exploited by an attacker to...
DEBIAN-CVE-2006-7228
Integer overflow in Perl-Compatible Regular Expression PCRE library before 6.7 might allow context-dependent attackers to execute arbitrary code via a regular expression that involves large 1 min, 2 max, or 3 duplength values that cause an incorrect length calculation and trigger a buffer overflo...