ELBA-2017-1909

ELBA-2017-1909 - pcre bug fix update

Type:BUG
Severity:NA
Release Date:2017-08-08

Description


[8.32-17]
- Let [:graph:], [:print:], and [:punct:] POSIX classes to handle Unicode
characters in UCP mode to match Perl behavior (bug #1400267)
- Fix matching Unicode ranges in JIT mode (bug #1402288)

[8.32-16]
- Fix CVE-2015-2328 (infinite recursion compiling pattern with recursive
reference in a group with indefinite repeat) (bug #1330509)
- Fix CVE-2015-8385 (buffer overflow caused by named forward reference to
duplicate group number) (bug #1330509)
- Fix CVE-2015-8386 (buffer overflow caused by lookbehind assertion)
(bug #1330509)
- Fix CVE-2015-3217 (stack overflow caused by mishandled group empty match)
(bug #1330509)
- Fix CVE-2015-5073 and CVE-2015-8388 (buffer overflow for forward reference
within backward assertion with excess closing parenthesis) (bug #1330509)
- Fix CVE-2015-8391 (inefficient posix character class syntax check)
(bug #1330509)
- Fix CVE-2016-3191 (workspace overflow for (*ACCEPT) with deeply nested
parentheses) (bug #1330509)




Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete