SciLinux: CVE-2006-7225 pcre SL5.x i386/x86_64
Summary
Date: Thu, 29 Nov 2007 16:24:55 -0600Reply-To: Troy DawsonSender: Security Errata for Scientific Linux From: Troy Dawson Subject: Security ERRATA for pcre on SL5.x i386/x86_64Comments: To: "scientific-linux-errata@fnal.gov" Synopsis: Important: pcre security updateIssue date: 2007-11-29CVE Names: CVE-2006-7225 CVE-2006-7226 CVE-2006-7228 CVE-2006-7230Flaws were discovered in the way PCRE handles certain malformed regularexpressions. If an application linked against PCRE, such as Konqueror,parses a malicious regular expression, it may have been possible to runarbitrary code as the user running the application.(CVE-2006-7225, CVE-2006-7226, CVE-2006-7228, CVE-2006-7230)SL 5.x SRPMS:pcre-6.6-2.el5_1.7.src.rpm i386:pcre-6.6-2.el5.7.i386.rpmpcre-devel-6.6-2.el5.7.i386.rpm x86_64:pcre-6.6-2.el5.7.i386.rpmpcre-6.6-2.el5.7.src.rpmpcre-6.6-2.el5.7.x86_64.rpmpcre-devel-6.6-2.el5.7.i386.rpmpcre-devel-6.6-2.el5.7.x86_64.rpm-Connie Sieh-Troy Dawson