| Revision Date: | 2021-11-10 | Version: | 1 |
| Title: | Security update for pcre (Moderate) |
| Description: |
This update for pcre fixes the following issues:
Update pcre to version 8.45:
- CVE-2020-14155: Fixed integer overflow via a large number after a '(?C' substring (bsc#1172974). - CVE-2019-20838: Fixed buffer over-read in JIT compiler (bsc#1172973). - CVE-2017-7244: Fixed invalid read in _pcre32_xclass() (bsc#1030807). - CVE-2017-7245: Fixed buffer overflow in the pcre32_copy_substring (bsc#1030805). - CVE-2017-7246: Fixed another buffer overflow in the pcre32_copy_substring (bsc#1030803). - CVE-2017-7186: Fixed denial of service caused by an invalid Unicode property lookup (bsc#1030066). - CVE-2017-6004: Fixed denial of service via crafted regular expression (bsc#1025709).
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1025709
1030066
1030803
1030805
1030807
1172973
1172974
CVE-2017-6004
CVE-2017-7186
CVE-2017-7244
CVE-2017-7245
CVE-2017-7246
CVE-2019-20838
CVE-2020-14155
|
| Platform(s): | SUSE Linux Enterprise Server 12 SP2-LTSS-ERICSSON
| Product(s): | |