RHSA-2016:1025

Affecting pcre package, versions <0:8.32-15.el7_2.1

Report new vulnerabilities
high severity
Do your applications use this vulnerable package? Test your applications

Overview

PCRE is a Perl-compatible regular expression library. Security Fix(es): * Multiple flaws were found in the way PCRE handled malformed regular expressions. An attacker able to make an application using PCRE process a specially crafted regular expression could use these flaws to cause the application to crash or, possibly, execute arbitrary code. (CVE-2015-8385, CVE-2016-3191, CVE-2015-2328, CVE-2015-3217, CVE-2015-5073, CVE-2015-8388, CVE-2015-8391, CVE-2015-8386)

CVE
RHSA-2016:1025
Snyk ID
SNYK-CENTOS7-PCRE-268427
Published
27 Jun, 2018