Oracle Linux 7 ELSA-2016-1025 Critical: PCRE Buffer Overflow
oracle
May 11, 2016
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:
Summary
[8.32-15.1] - Fix CVE-2015-2328 (infinite recursion compiling pattern with recursive reference in a group with indefinite repeat) (bug #1330508) - Fix CVE-2015-8385 (buffer overflow caused by named forward reference to duplicate group number) (bug #1330508) - Fix CVE-2015-8386 (buffer overflow caused by lookbehind assertion) (bug #1330508) - Fix CVE-2015-3217 (stack overflow caused by mishandled group empty match) (bug #1330508) - Fix CVE-2015-5073 and CVE-2015-8388 (buffer overflow for forward reference within backward assertion with excess closing parenthesis) (bug #1330508) - Fix CVE-2015-8391 (inefficient posix character class syntax check) (bug #1330508) - Fix CVE-2016-3191 (workspace overflow for (*ACCEPT) with deeply nested parentheses) (bug #1330508)
SRPMs
https://oss.oracle.com:443/ol7/SRPMS-updates/pcre-8.32-15.el7_2.1.src.rpm
x86_64
pcre-8.32-15.el7_2.1.i686.rpm pcre-8.32-15.el7_2.1.x86_64.rpm pcre-devel-8.32-15.el7_2.1.i686.rpm pcre-devel-8.32-15.el7_2.1.x86_64.rpm pcre-static-8.32-15.el7_2.1.i686.rpm pcre-static-8.32-15.el7_2.1.x86_64.rpm pcre-tools-8.32-15.el7_2.1.x86_64.rpm
aarch64
PREVIOUS 
NEXT Severity
critical
Lowest
Low
Medium
High
Critical
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!