FEDORA-2015-afafa29551 — security update for pcre

stable

pcre-8.37-7.fc22

FEDORA-2015-afafa29551 created by ppisar 9 years ago for Fedora 22

This release fixes CVE-2015-8380 (a heap-based buffer overflow in pcre_exec() when ovector has size 1).

This release fixes a crash when compiling an expression with long (MARK) or (THEN) names. It also fixes compiling a POSIX character class followed by a single ASCII character in a class item while UCP mode is active. It also fixes mismatching characters in the range 128-255 against [:punct:] in UCP mode.

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2015-afafa29551

This update has been submitted for testing by ppisar.

9 years ago

This update has obsoleted pcre-8.37-6.fc22, and has inherited its bugs and notes.

9 years ago

This update has been pushed to testing.

9 years ago

hreindl commented & provided feedback 9 years ago

karma

works for me

filiperosset commented & provided feedback 9 years ago

karma

no regressions noted

ppisar edited this update.

9 years ago

This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes

9 years ago

This update has been submitted for stable by ppisar.

9 years ago

This update has been pushed to stable.

9 years ago

Please login to add feedback.

Metadata

Type

security

Karma

Signed

Content Type

RPM

Test Gating

None

Autopush Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

disabled

Dates

submitted

9 years ago

in testing

9 years ago

in stable

9 years ago

modified

9 years ago

Builds

pcre-8.37-7.fc22

BZ#1285413 CVE-2015-8380 pcre: Heap-based buffer overflow in pcre_exec

BZ#1285415 pcre: Heap-based buffer overflow in pcre_exec [fedora-all]

pcre-8.37-7.fc22

Automated Test Results

None