11 matches found
JLSEC-2026-176
libpcre in PCRE before 8.43 allows a subject buffer over-read in JIT when UTF is disabled, and \X or \R has more than one fixed quantifier, a related issue to CVE-2019-20454...
Rocky Linux 8 : pcre (RLSA-2021:4373)
The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2021:4373 advisory. - libpcre in PCRE before 8.43 allows a subject buffer over-read in JIT when UTF is disabled, and \X or \R has more than one fixed quantifier, a related...
SUSE CVE-2019-20838
libpcre in PCRE before 8.43 allows a subject buffer over-read in JIT when UTF is disabled, and \X or \R has more than one fixed quantifier, a related issue to CVE-2019-20454...
Denial Of Service (DoS)
jbcs-httpd24 is vulnerable to denial of service DoS attacks. An attacker is able to perform a buffer over-read in JIT when UTF is disabled, and \X or \R has more than one fixed quantifier, resulting in a system hang...
pcre: Buffer over-read in JIT when UTF is disabled and \X or \R has fixed quantifier greater than 1
libpcre in PCRE before 8.43 allows a subject buffer over-read in JIT when UTF is disabled, and \X or \R has more than one fixed quantifier, a related issue to CVE-2019-20454...
pcre: Buffer over-read in JIT when UTF is disabled and \X or \R has fixed quantifier greater than 1
libpcre in PCRE before 8.43 allows a subject buffer over-read in JIT when UTF is disabled, and \X or \R has more than one fixed quantifier, a related issue to CVE-2019-20454...
CVE-2019-20838
libpcre in PCRE before 8.43 allows a subject buffer over-read in JIT when UTF is disabled, and \X or \R has more than one fixed quantifier, a related issue to CVE-2019-20454. Mitigation Do not use more than one fixed quantifier with \R or \X with UTF disabled in PCRE or PCRE2, as these are the...
CVE-2019-20838
libpcre in PCRE before 8.43 allows a subject buffer over-read in JIT when UTF is disabled, and \X or \R has more than one fixed quantifier, a related issue to CVE-2019-20454...
DEBIAN-CVE-2019-20838
libpcre in PCRE before 8.43 allows a subject buffer over-read in JIT when UTF is disabled, and \X or \R has more than one fixed quantifier, a related issue to CVE-2019-20454...
CVE-2019-20838
CVE-2019-20838 is a PCRE/PCRE2 vulnerability where libpcre had a subject buffer over-read during JIT compilation in non-UTF mode when the pattern uses \X or \R with more than one fixed quantifier. Affected versions include PCRE up to 8.43; remediation is to upgrade to a patched PCRE (e.g., 8.43+;...
PT-2020-10802 · Philip Hazel +10 · Pcre +10
Name of the Vulnerable Software and Affected Versions: PCRE versions prior to 8.43 Description: The issue allows a subject buffer over-read in JIT when UTF is disabled, and X or R has more than one fixed quantifier. Recommendations: For versions prior to 8.43, update to version 8.44 or later to...