Scientific Linux: SLSA-2015:0330-2 Low: pcre Malicious Input Risk

Mar 25, 2015 •

LinuxSecurity Advisories

1 - 2 min read

Scientific Large Esm H500

Topics Covered

security advisory low severity pcre malicious input Scientific Linux

Low: pcre security and enhancement update

Date: Wed, 25 Mar 2015 15:17:57 +0000
Reply-To: scientific-linux-users@
Sender: Security Errata for Scientific Linux
 
From: Pat Riehecky 
Subject: Security ERRATA Low: pcre on SL7.x x86_64
MIME-Version: 1.0

Synopsis: Low: pcre security and enhancement update
Advisory ID: SLSA-2015:0330-2
Issue Date: 2015-03-05
CVE Numbers: CVE-2014-8964
--

A flaw was found in the way PCRE handled certain malformed regular
expressions. This issue could cause an application (for example,
Konqueror) linked against PCRE to crash while parsing malicious regular
expressions. (CVE-2014-8964)

This update also adds the following enhancement:

* Support for the little-endian variant of IBM Power Systems has been
added to the pcre packages.
--

SL7
 x86_64
 pcre-8.32-14.el7.i686.rpm
 pcre-8.32-14.el7.x86_64.rpm
 pcre-debuginfo-8.32-14.el7.i686.rpm
 pcre-debuginfo-8.32-14.el7.x86_64.rpm
 pcre-devel-8.32-14.el7.i686.rpm
 pcre-devel-8.32-14.el7.x86_64.rpm
 pcre-static-8.32-14.el7.i686.rpm
 pcre-static-8.32-14.el7.x86_64.rpm
 pcre-tools-8.32-14.el7.x86_64.rpm

- Scientific Linux Development Team

Powered By

Linux Security Footer

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Your message here