Lucene search

K
suseSuseOPENSUSE-SU-2021:1441-1
HistoryNov 02, 2021 - 12:00 a.m.

Security update for pcre (moderate)

2021-11-0200:00:00
lists.opensuse.org
26
pcre
update
vulnerabilities
integer overflow
buffer over-read
suse
leap 15.2

EPSS

0.01

Percentile

84.1%

An update that fixes two vulnerabilities is now available.

Description:

This update for pcre fixes the following issues:

Update pcre to version 8.45:

  • CVE-2020-14155: Fixed integer overflow via a large number after a ‘(?C’
    substring (bsc#1172974).
  • CVE-2019-20838: Fixed buffer over-read in JIT compiler (bsc#1172973)

This update was imported from the SUSE:SLE-15:Update update project.

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.

Alternatively you can run the command listed for your product:

  • openSUSE Leap 15.2:

    zypper in -t patch openSUSE-2021-1441=1

OSVersionArchitecturePackageVersionFilename
openSUSE Leap15.2i586< - openSUSE Leap 15.2 (i586 x86_64):- openSUSE Leap 15.2 (i586 x86_64):.i586.rpm
openSUSE Leap15.2x86_64< - openSUSE Leap 15.2 (i586 x86_64):- openSUSE Leap 15.2 (i586 x86_64):.x86_64.rpm
openSUSE Leap15.2noarch< - openSUSE Leap 15.2 (noarch):- openSUSE Leap 15.2 (noarch):.noarch.rpm
openSUSE Leap15.2x86_64< - openSUSE Leap 15.2 (x86_64):- openSUSE Leap 15.2 (x86_64):.x86_64.rpm