CVE-2008-1677

Buffer overflow in the regular expression handler in Red Hat Directory Server 8.0 and 7.1 before SP6 allows remote attackers to cause a denial of service slapd crash and possibly execute arbitrary code via a crafted LDAP query that triggers the overflow during translation to a regular expression...

perl buffer overflow

Heap memory overflow on regular expression handling...

Double free

Double free vulnerability in Perl 5.8.8 allows context-dependent attackers to cause a denial of service memory corruption and crash via a crafted regular expression containing UTF8 characters. NOTE: this issue might only be present on certain operating systems...

CVE-2008-1927

Double free vulnerability in Perl 5.8.8 allows context-dependent attackers to cause a denial of service memory corruption and crash via a crafted regular expression containing UTF8 characters. NOTE: this issue might only be present on certain operating systems...

CVE-2008-1927

Double free vulnerability in Perl 5.8.8 allows context-dependent attackers to cause a denial of service memory corruption and crash via a crafted regular expression containing UTF8 characters. NOTE: this issue might only be present on certain operating systems...

CVE-2008-1927

Double free vulnerability in Perl 5.8.8 allows context-dependent attackers to cause a denial of service memory corruption and crash via a crafted regular expression containing UTF8 characters. NOTE: this issue might only be present on certain operating systems...

CVE-2008-1026

Integer overflow in the PCRE regular expression compiler JavaScriptCore/pcre/pcrecompile.cpp in Apple WebKit, as used in Safari before 3.1.1, allows remote attackers to execute arbitrary code via a regular expression with large, nested repetition counts, which triggers a heap-based buffer overflo...

Integer overflow

Integer overflow in the PCRE regular expression compiler JavaScriptCore/pcre/pcrecompile.cpp in Apple WebKit, as used in Safari before 3.1.1, allows remote attackers to execute arbitrary code via a regular expression with large, nested repetition counts, which triggers a heap-based buffer overflo...

Moderate Updated Service Console packages pcre, net-snmp, and OpenPegasus

a. Updated pcre Service Console package addresses several security issuesThe pcre package contains the Perl-Compatible Regular Expression library. pcre is used by various Service Console utilities. Several security issues were discovered in the way PCRE handles regular expressions. If an...

VMSA-2008-0007:MEDIUM Updated Service Console packages pcre, net-snmp, and OpenPegasus

VMSA-2008-0007.2 Moderate Updated Service Console packages pcre, net-snmp, and OpenPegasus VMware Security Advisory VMware Security AdvisoryAdvisory ID: VMSA-2008-0007.2 VMware Security AdvisorySynopsis: Moderate Updated Service Console packages pcre, net-snmp, and OpenPegasus VMware Security...

Apple Safari 3.1之前版本多个安全漏洞

BUGTRAQ ID: 28290 CVECAN ID: CVE-2008-1011,CVE-2008-1010,CVE-2008-1009,CVE-2008-1008,CVE-2008-1007,CVE-2008-1006,CVE-2008-1005,CVE-2008-1004,CVE-2008-1003,CVE-2008-1002,CVE-2008-1001,CVE-2008-0050 Safari是苹果家族操作系统默认所捆绑的WEB浏览器。 Safari的3.1版修复了多个安全漏洞，具体如下： CVE-2008-0050 恶意的HTTPS代理服务器可能在502 Bad...

GLSA-200803-24 : PCRE: Buffer overflow

The remote host is affected by the vulnerability described in GLSA-200803-24 PCRE: Buffer overflow PCRE contains a buffer overflow vulnerability when processing a character class containing a very large number of characters with codepoints greater than 255. Impact : A remote attacker could exploi...

PCRE: Buffer overflow

Background PCRE is a Perl-compatible regular expression library. GLib includes a copy of PCRE. Description PCRE contains a buffer overflow vulnerability when processing a character class containing a very large number of characters with codepoints greater than 255. Impact A remote attacker could...

GLSA-200803-20 : International Components for Unicode: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200803-20 International Components for Unicode: Multiple vulnerabilities Will Drewry Google Security reported a vulnerability in the regular expression engine when using back references to capture \0 characters CVE-2007-4770. He...

International Components for Unicode: Multiple vulnerabilities

Background International Components for Unicode is a set of C/C++ and Java libraries providing Unicode and Globalization support for software applications. Description Will Drewry Google Security reported a vulnerability in the regular expression engine when using back references to capture \0...

[SECURITY] Fedora 7 Update: pcre-7.3-3.fc7

Perl-compatible regular expression library. PCRE has its own native API, but a set of "wrapper" functions that are base d on the POSIX API are also supplied in the library libpcreposix. Note that this just provides a POSIX calling interface to PCRE: the regular expressions themselves still follow...

RHEL 2.1 / 3 : tcltk (RHSA-2008:0134)

Updated tcltk packages that fix a security issue are now available for Red Hat Enterprise Linux 2.1, and 3. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Tcl is a scripting language designed for embedding into other applications and for use...

CentOS 3 : tcltk (CESA-2008:0134)

Updated tcltk packages that fix a security issue are now available for Red Hat Enterprise Linux 2.1, and 3. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Tcl is a scripting language designed for embedding into other applications and for use...

Sql injection

SQL injection vulnerability in port/modifyportform.php in Open Source Security Information Management OSSIM 0.9.9 rc5 allows remote authenticated users to execute arbitrary SQL commands via the portname parameter, which is not properly handled by a validation regular expression...

Moderate: Red Hat Security Advisory: tcltk security update

Updated tcltk packages that fix a security issue are now available for Red Hat Enterprise Linux 2.1, and 3. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Tcl is a scripting language designed for embedding into other applications and for use...