ELSA-2016-1025

ULN >
Oracle Linux Errata repository >
ELSA-2016-1025

ELSA-2016-1025 - pcre security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2016-05-11

Description

[8.32-15.1]
- Fix CVE-2015-2328 (infinite recursion compiling pattern with recursive
reference in a group with indefinite repeat) (bug #1330508)
- Fix CVE-2015-8385 (buffer overflow caused by named forward reference to
duplicate group number) (bug #1330508)
- Fix CVE-2015-8386 (buffer overflow caused by lookbehind assertion)
(bug #1330508)
- Fix CVE-2015-3217 (stack overflow caused by mishandled group empty match)
(bug #1330508)
- Fix CVE-2015-5073 and CVE-2015-8388 (buffer overflow for forward reference
within backward assertion with excess closing parenthesis) (bug #1330508)
- Fix CVE-2015-8391 (inefficient posix character class syntax check)
(bug #1330508)
- Fix CVE-2016-3191 (workspace overflow for (*ACCEPT) with deeply nested
parentheses) (bug #1330508)

Related CVEs

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle Linux 7 (x86_64)	pcre-8.32-15.el7_2.1.src.rpm	5fe5a9ea16d1fa56fc3e2bc7d0d71e2f	ELBA-2017-1909
	pcre-8.32-15.el7_2.1.i686.rpm	c0e6d36d7a2e10b9ed645d198266a0bd	ELBA-2017-1909
	pcre-8.32-15.el7_2.1.x86_64.rpm	cf75f2adedb28d8dcb695e97f85f387a	ELBA-2017-1909
	pcre-devel-8.32-15.el7_2.1.i686.rpm	e32056084c528b47be05f2184d70d811	ELBA-2017-1909
	pcre-devel-8.32-15.el7_2.1.x86_64.rpm	30e2ec4990cdc18b5e0392147a5526bf	ELBA-2017-1909
	pcre-static-8.32-15.el7_2.1.i686.rpm	7c3d848d30f10fa5eaf78bc69b6cacde	ELBA-2017-1909
	pcre-static-8.32-15.el7_2.1.x86_64.rpm	50e9c9a9d053fa6068e8ce26ecb1ee64	ELBA-2017-1909
	pcre-tools-8.32-15.el7_2.1.x86_64.rpm	9fdc55aab56a862378294885b9b8e2a5	ELBA-2017-1909

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691