Oval Definition:oval:com.redhat.rhsa:def:20071068
Revision Date:2007-11-29Version:636
Title:RHSA-2007:1068: pcre security update (Important)
Description:PCRE is a Perl-compatible regular expression library.

  • Flaws were discovered in the way PCRE handles certain malformed regular expressions. If an application linked against PCRE, such as Konqueror, parses a malicious regular expression, it may have been possible to run arbitrary code as the user running the application. (CVE-2006-7225, CVE-2006-7226, CVE-2006-7228, CVE-2006-7230, CVE-2007-1659)

    Users of PCRE are advised to upgrade to these updated packages, which contain backported patches to resolve these issues.

    Red Hat would like to thank Ludwig Nussel for reporting these issues.
  • Family:unixClass:patch
    Status:Reference(s):CVE-2006-7225
    CVE-2006-7226
    CVE-2006-7228
    CVE-2006-7230
    CVE-2007-1659
    RHSA-2007:1068
    RHSA-2007:1068-01
    RHSA-2007:1068-01
    Platform(s):Red Hat Enterprise Linux 4
    Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND
  • pcre is earlier than 0:4.5-4.el4_6.6
  • AND pcre is signed with Red Hat redhatrelease2 key
  • pcre-devel is earlier than 0:4.5-4.el4_6.6
  • AND pcre-devel is signed with Red Hat redhatrelease2 key
  • BACK