FEDORA-2016-f59a8ff5d0

security update in Fedora 22 for mingw-pcre

Status: stable 3 years ago

Update to 8.38 and fix various CVE's

How to install

sudo dnf upgrade --advisory=FEDORA-2016-f59a8ff5d0

Comments 5

This update has been submitted for testing by epienbro.

This update has been pushed to testing.

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

This update has been submitted for stable by epienbro.

This update has been pushed to stable.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
unspecified
Karma
0
stable threshold: 1
unstable threshold: -3
Autopush
Enabled
Dates
submitted 3 years ago
in testing 3 years ago
in stable 3 years ago

Related Bugs 18

00 #1236660 CVE-2015-3210 mingw-pcre: pcre: heap buffer overflow in pcre_compile2() / compile_regex() [fedora-all]
00 #1237225 CVE-2015-5073 mingw-pcre: pcre: heap buffer overflow in find_fixedlength() [fedora-all]
00 #1249905 mingw-pcre: php: Regular Expression Uninitialized Pointer Information Disclosure Vulnerability (ZDI-CAN-2547) [fedora-all]
00 #1250947 mingw-pcre: pcre: heap buffer overflow with a crafted regular expression [fedora-all]
00 #1256453 mingw-pcre: pcre: Heap Overflow in compile_regex() [fedora-all]
00 #1287616 CVE-2015-8383 mingw-pcre: pcre: Buffer overflow caused by repeated conditional group [fedora-all]
00 #1287626 CVE-2015-8384 mingw-pcre: pcre: Buffer overflow caused by recursive back reference by name within certain group [fedora-all]
00 #1287631 CVE-2015-8385 mingw-pcre: pcre: Buffer overflow caused by forward reference by name to certain group [fedora-all]
00 #1287640 CVE-2015-8386 mingw-pcre: pcre: Buffer overflow caused by lookbehind assertion [fedora-all]
00 #1287648 CVE-2015-8387 mingw-pcre: pcre: Integer overflow in subroutine calls [fedora-all]
00 #1287656 CVE-2015-8388 mingw-pcre: pcre: Buffer overflow caused by certain patterns with an unmatched closing parenthesis [fedora-all]
00 #1287661 CVE-2015-8389 mingw-pcre: pcre: Infinite recursion in JIT compiler when processing certain patterns [fedora-all]
00 #1287668 CVE-2015-8390 mingw-pcre: pcre: Reading from uninitialized memory when processing certain patterns [fedora-all]
00 #1287673 CVE-2015-8391 mingw-pcre: pcre: Some pathological patterns causes pcre_compile() to run for a very long time [fedora-all]
00 #1287692 CVE-2015-8392 mingw-pcre: pcre: Buffer overflow caused by certain patterns with duplicated named groups [fedora-all]
00 #1287698 CVE-2015-8393 mingw-pcre: pcre: Information leak when running pcgrep -q on crafted binary [fedora-all]
00 #1287704 CVE-2015-8394 mingw-pcre: pcre: Integer overflow caused by missing check for certain conditions [fedora-all]
00 #1287720 CVE-2015-8395 mingw-pcre: pcre: Buffer overflow caused by certain references [fedora-all]

Automated Test Results