Fedora 21: pcre Security Update
Summary
Perl-compatible regular expression library.
PCRE has its own native API, but a set of "wrapper" functions that are based on
the POSIX API are also supplied in the library libpcreposix. Note that this
just provides a POSIX calling interface to PCRE: the regular expressions
themselves still follow Perl syntax and semantics. The header file
for the POSIX-style functions is called pcreposix.h.
Update Information:
This release fixes a heap overflow when compiling certain regular expressions with named refecences. This release fixes buffer overflows when compiling certain expressions.
Change Log
References
[ 1 ] Bug #1250943 - pcre: heap buffer overflow with a crafted regular expression https://bugzilla.redhat.com/show_bug.cgi?id=1250943 [ 2 ] Bug #1256449 - pcre: Heap Overflow in compile_regex() https://bugzilla.redhat.com/show_bug.cgi?id=1256449
Update Instructions
This update can be installed with the "yum" update program. Use su -c 'yum update pcre' at the command line. For more information, refer to "Managing Software with yum", available at .